Select Page

Use Azure Automation to onboard VMs to Log Analytics

Hello, Chris Wallen here and in this post, I'm going to show how you can use an automation runbook to onboard Windows and Linux VMs to a Log Analytics workspace. Before we get started with the code portion, there are ... continue reading
Use Azure Automation to Install and Configure the Log Analytics Extension

Use Azure Automation to Install and Configure the Log Analytics Extension

Hello, Chris Wallen here and in this post, I'm going to show how you can use an Azure Automation runbook to deploy and configure the Log Analytics extension to a group of virtual machines running either Windows or Linux. Before ... continue reading
Infographic showing the classic SIEM model: Incidents, Alert Queue, Primary Investigation, Pivot and Remediate.

CISO series: Lessons learned from the Microsoft SOC—Part 3a: Choosing SOC tools

The Lessons learned from the Microsoft SOC blog series is designed to share our approach and experience with security operations center (SOC) operations. Our learnings in the series come primarily from Microsoft’s corporate IT security operation team, one of several ... continue reading
SQL Audit logs in Azure Log Analytics and Azure Event Hubs

SQL Audit logs in Azure Log Analytics and Azure Event Hubs

First published on MSDN on Sep 13, 2018 We are pleased to announce that Azure SQL Database Audit logs can now be written directly to Azure Log Analytics or Azure Event Hubs. This ability, now available in public preview, provides ... continue reading
Azure Log Analytics (OMS) Agent now collects SQL Server audit logs

Azure Log Analytics (OMS) Agent now collects SQL Server audit logs

First published on MSDN on Dec 28, 2017 We are happy to inform that the Azure Log Analytics (OMS) Agent is now capable of pushing SQL Server audit logs into Azure Log Analytics (OMS), supporting SQL Server both on-premises, as ... continue reading
Upgrade Readiness Client Configuration

Upgrade Readiness Client Configuration

First published on TECHNET on Mar 13, 2017Hello, again! I am back and this time, we will look at how to start data collection for the Windows 10 Upgrade Readiness solution. This part assumes that you have a working Operations ... continue reading
Getting Started with Upgrade Readiness

Getting Started with Upgrade Readiness

First published on TECHNET on Mar 03, 2017Hello again. In my last post , I briefly touched upon the challenges application compatibility can present when planning a migration to a new version of Windows. We looked at how Upgrade Readiness ... continue reading
Introduction to Upgrade Readiness and Application Compatibility with Windows 10

Introduction to Upgrade Readiness and Application Compatibility with Windows 10

First published on TECHNET on Feb 24, 2017Hello! My name is Nandan, I am a Premier Field Engineer in the Windows Platforms team with Microsoft UK.With this article, I would like to give you a quick introduction to Upgrade Readiness ... continue reading
Uncovering Linux based cyberattack using Azure Security Center

Uncovering Linux based cyberattack using Azure Security Center

As more and more enterprises move to the cloud, they also bring their own set of security challenges. Today, almost half of Azure virtual machines (VMs) are running on Linux, and as the Linux server population grows, so are the ... continue reading
Overview of Device Guard in Windows Server 2016

Overview of Device Guard in Windows Server 2016

First published on TECHNET on Sep 20, 2016 With thousands of new malware released every day, it may not be sufficient to only use signature-based detection to fight against malware. Device Guard on Windows Server 2016 changes from a mode ... continue reading