Ping a Specific Port

Question

Norrin Rad

Asked: 2019-11-19 03:51:31 +0800 CST2019-11-19 03:51:31 +0800 CST 2019-11-19 03:51:31 +0800 CST

Log Security Events for Azure VMs

772

I’m trying to enable security logs for auditing in Azure. I’ve looked at security in the data sources from windows machines, but that says the intelligence pack isn’t installed.

I think they may be in the security Center. I was wondering how to save these logs to a storage account for long term retention.

I hope this makes sense.

1 Answers

Voted

Sam Cogan · Answer 1 · 2019-11-19T04:45:20+08:00

Sam Cogan

2019-11-19T04:45:20+08:002019-11-19T04:45:20+08:00

If you just need to get teh security logs then you will need to configure Log Analytics to pull in that log under the data sources section. Then you will need to onboard the required VMs into log analytics to get the agent installed. At this point you will then see this data flow into log analytics.

There is however not an easy way to export this data from Log Analytics to storage. You would have to run a script in something like Azure Functions or Automation to do this. Example here.

0

Log Security Events for Azure VMs

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?