![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(38.4, 31%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELA%3C/text%3E%3C/svg%3E)
Microsoft Sentinel
A scalable, cloud-native solution for security information event management and security orchestration automated response. Previously known as Azure Sentinel.
1,165 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 52%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Thank you for posting your query on Microsoft Q&A, I am currently getting the ask reviewed internally and will get back to you with further inputs.
Update 1:
Thank you for your time and patience, I was able to get this reviewed and got the following update from dev team:
As per current design DNS events via the AMA connector only support analytic events, not audit events.
However, adding the collection of Windows DNS audit events in currently on the roadmap and private preview would be out soon for customer's feedback. Currently we don't have any ETA on the availability.
If you don't have any further queries and the suggested answer is as per your business need, please "Accept the answer", This will help us and others in the community as well.
Thanks,
Akshay Kaushik