This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(73.60000000000001, 68%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDO%3C/text%3E%3C/svg%3E)
I am trying to monitor security(authentication) logs on a windows machine using azure monitor, I have setup my waorkspace and at the moment all I can see are Windows Application logs from the machine.
Hi @Desmond Ogbon ,
As mentioned in this Azure document, currently as per design, you can't configure collection of security events from the workspace. You must use Azure Security Center or Azure Sentinel to collect security events.
Hi @tbgangav-MSFT ,
Thanks for the feedback. I would like to ask if this can be achieved using custom logs ?
Hi @Desmond Ogbon ,
If the logs are captured in some file and that too in some standard accessible folder or location then yes I believe we can leverage custom logs.