Configuration Manager and Azure Sentinel

A few months ago, Microsoft had an Azure Sentinel hackathon, and I thought that maybe I could build-up one POC solution for Azure Sentinel and Log Analytics. My idea was to capture all the admin activities and immediately send the data off the Primary Site server. I decided to build this POC because the built-in auditing isn’t that good, and it needs some modernization.

You can download all the scripts and manuals from my GitHub account – https://github.com/Kaidja/AZMEMCM.

If you have any questions, then just let us know.

Have fun!

Kaido Järvemets

The ABC of Security Updates (Past seminar)
Azure Sentinel PowerShell cmdlets
Need more information?
Need more information?
  • This field is for validation purposes and should be left unchanged.