Use Search jobs in Microsoft Sentinel
In Microsoft Sentinel, you can search across long time periods in large datasets by using a search job.
Learning objectives
After completing this module, you'll be able to:
- Use Search Jobs in Microsoft Sentinel
- Restore archive logs in Microsoft Sentinel
Prerequisites
Basic knowledge of operational concepts such as KQL, logging, and archiving