Dear RachanaSR Based on previous experience with this integration, I
would recommend using the azure monitor (event hub) instead of the Azure
Graph since on the logging part, we notice a lot of details not
available when using Azure Graph and got bet...
Dear @AhteshamPatel Sorry for the late response, currently in Microsoft
defender and azure Cloud services, have important security analytics
tables that give us great visibility within RSA netwitness, these tables
are collected through the azure moni...
Dear Dino, currently a lot of detail missing when we using Microsoft
Graph to collect logs we moved to collect logs through Security
Analytics which will give more details and amount of data that we can
use/help in RSA for Threat hunting. wish if mor...
Dear Will, Could you please advise how we can get these Rules from the
live since when I checked it seems it is not available? and if there is
any requirement that we need to enable? Thanks. AM
Dear Will, Could you please advise how we can get these Rules from the
live since when I checked it seems it is not available? and if their is
any requirement that we need to enable Thanks.