Sonrai Data connector for Microsoft Sentinel
Use this data connector to integrate with Sonrai Security and get Sonrai tickets sent directly to Microsoft Sentinel.
This is autogenerated content. For changes, contact the solution provider.
Connector attributes
Connector attribute | Description |
---|---|
Log Analytics table(s) | Sonrai_Tickets_CL |
Data collection rules support | Not currently supported |
Supported by | Sonrai |
Query samples
Query for tickets with AWSS3ObjectFingerprint resource type.
Sonrai_Tickets_CL
| where digest_resourceType_s == "AWSS3ObjectFingerprint"
| limit 10
Vendor installation instructions
Sonrai Security Data Connector
- Navigate to Sonrai Security dashboard.
- On the bottom left panel, click on integrations.
- Select Microsoft Sentinel from the list of available Integrations.
- Fill in the form using the information provided below.
Next steps
For more information, go to the related solution in the Azure Marketplace.