how to import custom log in Azure log analytics workspace ?

ALGOURDIN Erwan 1 Reputation point
2021-06-25T13:39:35.397+00:00

i make a powershell query export from security log as RawDATA, i put response in .txt file.
when i import this file in Log analytics workspace i havent response form my query.

need to know how to parse data or what i do wrong

thank you for answer

Cordially

Azure Monitor
Azure Monitor
An Azure service that is used to collect, analyze, and act on telemetry data from Azure and on-premises environments.
3,275 questions
Microsoft Sentinel
Microsoft Sentinel
A scalable, cloud-native solution for security information event management and security orchestration automated response. Previously known as Azure Sentinel.
1,141 questions
{count} votes

1 answer

Sort by: Most helpful
  1. SUNOJ KUMAR YELURU 14,306 Reputation points MVP
    2021-06-25T14:39:19.823+00:00

    Hi @ALGOURDIN Erwan

    Use the following procedure to define a custom log file. Scroll to the end of this article for a walkthrough of a sample of adding a custom log.
    https://learn.microsoft.com/en-us/azure/azure-monitor/agents/data-sources-custom-logs#defining-a-custom-log

    Parse text data in Azure Monitor logs
    https://learn.microsoft.com/en-us/azure/azure-monitor/logs/parse-text

    If the Answer is helpful, please click Accept Answer and up-vote, this can be beneficial to other community members.


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.