Microsoft Azure Sentinel: Planning and implementing Microsoft s cloud-native SIEM solution

Chapter 9. Integrating with partners

A SIEM usually aggregates data from multiple data sources, and these data sources are not necessarily part of a single vendor; in fact, these data sources are from different vendors and different solutions that are part of the organization’s IT ecosystem. For this reason, it is imperative for the SIEM solution to be flexible and enable you to ingest data from different vendors. In addition to the native data connectors available for Microsoft solutions in Azure Sentinel, there are also a set of built-in connectors for partner solutions.

In this chapter, you will learn more about integrating Azure Sentinel with Fortinet, Amazon AWS, and Palo Alto.

Connecting with Fortinet

Azure Sentinel has native integration ...

Get Microsoft Azure Sentinel: Planning and implementing Microsoft s cloud-native SIEM solution now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Microsoft Azure Sentinel: Planning and implementing Microsoft s cloud-native SIEM solution by Yuri Diogenes, Nicholas DiCola, Jonathan Trull

Chapter 9. Integrating with partners

Connecting with Fortinet

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly