Centralized log management across multi-cloud environment

Rakesh 20 Reputation points
2023-02-22T08:56:09.4766667+00:00

Can Azure Sentinel helps to centralize the logs across a multi-cloud environment or is there any other better tools/solutions available?

Microsoft Security | Microsoft Sentinel
0 comments No comments
{count} votes

Accepted answer
  1. Clive Watson 7,866 Reputation points MVP Volunteer Moderator
    2023-02-22T18:09:01.45+00:00

    You also need to look at the Sentinel Content hub: https://learn.microsoft.com/en-us/azure/sentinel/sentinel-solutions-deploy this is the new place for content: https://learn.microsoft.com/en-us/azure/sentinel/sentinel-content-centralize

    Centralized Log Management is sometimes different from Centralized Security Management that Microsoft Sentinel provides - the former maybe better achieved with log Analytics or another tool, but we'd need to know more about your requirement. The short answer is Yes, it can be a Central Log management solution.

    If CSPM was the goal then you may look to https://learn.microsoft.com/en-us/azure/defender-for-cloud/quickstart-onboard-aws?pivots=env-settings - which you might also then connect to Sentinel.

    2 people found this answer helpful.
    0 comments No comments

1 additional answer

Sort by: Most helpful
  1. Kamil Maciejewski 85 Reputation points
    2023-02-22T09:41:19.5933333+00:00

    I haven't used it yet but it all depends on the collectors, you can check if there are available here: https://learn.microsoft.com/en-us/azure/sentinel/data-connectors-reference

    1 person found this answer helpful.
    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.