IBM QRadar

Join this online user group to communicate across Security product users and IBM experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

View Only

Back to discussions

Expand all | Collapse all

Azure Monitor Log format

1. Azure Monitor Log format

Like
Korry Bradley
Posted Fri October 28, 2022 09:03 AM

Reply
Microsoft is End of Life support for all diagnostic agents and only will support the Azure Monitor Agent after August 2024. The JSON format of the Azure Monitor Agent (AMA) is different then the format that the diagnostic agents send. There is a Request for Enhancement to create a DSM for AMA, QROC-I-52.
Need DSM for Azure Monitor Agent Logs

Ibm remove preview

Need DSM for Azure Monitor Agent Logs

View this on Ibm >

Please go vote for the RFE. Has anyone created their own custom DSM to parse these logs?

------------------------------
Korry Bradley
------------------------------

IBM QRadar

IBM QRadar

Azure Monitor Log format

1. Azure Monitor Log format

Additional
Resources

Office

Quick Links

IBM QRadar

IBM QRadar

Azure Monitor Log format

1. Azure Monitor Log format

Related Content

DSM Parsing in QRadar

QRadar SIEM UP12 is Here: Explore the Latest Features and Improvements

Monitoring WinCollect Agents: Managed AND Stand Alone

Announcing WinCollect 10 Agent Support for IPv6

Integrating unsupported Log source with IBM QRadar SIEM

Additional Resources

Office

Quick Links

Additional
Resources