Note: There may be known issues pertaining to this Solution, please refer to them before installing.

The Syslog solution allows you to ingest events from applications or appliances that generate and can forward logs in the Syslog format to a Syslog Forwarder. The Agent for Linux is then able to forward these logs to the Log Analytics/Microsoft Sentinel workspace.

Underlying Microsoft Technologies used:

This solution takes a dependency on the following technologies, and some of these dependencies either may be in Preview state or might result in additional ingestion or operational costs:

a. Agent based logs collection from Windows and Linux machines

Data Connectors: 1, Workbooks: 1, Analytic Rules: 5, Hunting Queries: 9

Learn more about Microsoft Sentinel | Learn more about Solutions