No video :(

Setting up alert rules in Azure Sentinel

Подписаться 4,6 тыс.

Просмотров 10 тыс.

50% 1

In this AzureVlog I explain how you can setup alert rules in Azure Sentinel
▼ Social Jeroen Niesen
Twitter: / jeroenniesen
▼ Social AzureVlog
Twitter: / azurevlog
Web: azurevlog.com/

Опубликовано:

30 мар 2019

Ссылка:

Скачать:

Готовим ссылку...

Добавить в:

Мой плейлист

Посмотреть позже

Комментарии : 26

@PrebenOlsen90 5 лет назад

I absolutely love how 15 % of this video is you making coffee.

@RobBastien 4 года назад

Love the "coffee" sequence at opening, it makes your videos stand out from the rest.

@mrj1557 4 года назад

For a few seconds, i thought the intro was an advert for coffee

@jayeshdevadiga1975 4 года назад

can you post more vlogs on azure sentinel..such as integration of on prem tools like fortigate FW and creating more custom rules and automation using logic apps.

@Rohit-ox4wg Год назад

How was the coffee? loved the video btw

@pankajmandania1785 4 года назад

i love coffee and whats better then a turorial with coffee?? Keep in coming and good work!

@guserkumar9345 4 года назад

Very good explained

@DavidCrooksPhotos 2 года назад

I didn't know I was going to learn how to make coffee?

@sandeepdhawan1874 5 лет назад

buddy thanks for the coffee :)

@kenneth3762 Год назад

In this case, the alert was "4625", where can we find a master index of events types to craft different alerts? Thanks!

@AzureVlog Год назад

I would suggest to have a look at: www.ultimatewindowssecurity.com/securitylog/encyclopedia/

@LuigiZambetti Год назад

Do you need to have a Storage Account to save Sentinel logs/alerts and so on?

@AzureVlog Год назад

Hi! Logs are stored in a Log Analytics workspace. You don't need a storage account for that. Hope this helps!

@LuigiZambetti Год назад

@@AzureVlog Thank you.

@jameseduard2092 4 года назад

awesome maybe you can create tutorials on new sentinel now how to create new alerts and the use of playbook, since new update from sentinel was applied thanks and looking for more videos

@AzureVlog 3 года назад

Great suggestion! I will put that topic on my list of videos to create!

@rideskateco.1887 3 года назад

@@AzureVlog awesome thanks

@hussaintin 5 лет назад

Great videos. Do you have any idea when Microsoft intends on releasing more of the Sentinel features (within preview or final release), such as graph visualization and logic apps?

@AzureVlog 5 лет назад

I cannot answer that question. I would suggest to become part of the Azure Sentinel Community: techcommunity.microsoft.com/t5/Azure-Sentinel/bd-p/AzureSentinel. If Microsoft will add new features, it will be posted there.

@AzureVlog 5 лет назад

Graph visualization is already in the product. You can create graphs out of your KQL (Kusto) queries. Have a look at: docs.microsoft.com/en-us/azure/azure-monitor/log-query/charts

@VintageToyTheatre 3 года назад

It has been 1 year since last content on Sentinel? Nothing new on their end?

@AzureVlog 3 года назад

A lot has been added during that year! Lots of new video’s will come! Today I uploaded a video about threat intelligence which is currently a public preview feature.

@DavidCrooksPhotos 2 года назад

Time for an update at Microsoft Sentinel does not have cases...

@AzureVlog Год назад

I just uploaded a new "Setup and configure Sentinel" video which shows the new screens and methods to create an analytic rule (using the content hub)