🔐 [NEW BLOG] #MicrosoftSentinel allows you to stream, and filter #Windows #Firewall application logs collected from machines and servers using the new #WindowsFirewall via #AzureMonitorAgent to the "ASimNetworkSessionLogs" normalized schema table. ❓ One question we are frequently asked is whether we can use the #WindowsForwardedEvents solution using #AMA to collect Windows Firewall Events to be forwarded to a Windows Event Collector machine, similar to collecting Windows #SecurityEvent logs instead of individually loading the AMA agent on each server. 🤙 The short answer is YES! 🎉 🚀 This guide will describe all the steps to configure and collect #WindowsFirewall Events from servers, send them to #Microsoft #Sentinel using the Windows Forwarded Events #WEF solution, and get them ingested into the "ASimNetworkSessionLogs" normalized table using ingestion-time data transformation. 🔥 This approach would not require installing and managing the #AMA on each machine but to keep collecting from a central server with outbound connectivity. Learn more! 👇👇👇 charbelnemnom.com/collect-wi… #MicrosoftSecurity #SIEM #SOAR #NetworkSecurity #AzureSecurity

Tips when migrating to Azure Monitor Agent from Log Analytics agent rodtrent.com/334 #MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #AzureMonitorAgent

Analyzing Windows Defender Application Control events in audit mode #AzureMonitoragent #LogAnalytics #MicrosoftIntune via pvanderwoude bit.ly/43AztON

Migrating to the Azure Monitor agent - Part 2 seifbassem.com/blogs/posts/a… #azure #azuremonitor #azuremonitoragent #ama #azurearc

You can use auto provisioning to quietly deploy the Azure Monitor Agent on your servers. #AMA #AzureMonitorAgent #MicrosoftDefenderforCloud #Azure #TechTwitter #Womenintech #AzureCloud docs.microsoft.com/en-us/azu…

LogAnalyticsAgentからAzureMonitorAgentへの移行ツールが登場！ ※Log AnalyticsAgentは、2024年8月31日に廃止されます。

Are you looking at getting started with the #AzureMonitorAgent (#AMA) on #Windows devices and using #MSIntune for the distribution? If so, have a look at my latest blog post! 👇

We heard you! You can now use the same agent for telemetry and security management (using #MicrosoftSentinel) across your service and device (Windows 10,11) landscape #AzureMonitorAgent #DataCollectionRules Try out the private preview today: aka.ms/amadcr-privatepreview…