I have a sentinel instance running in azure but not enough data to test the full functionality of sentinel.
Doing some research I came across with azure sentinel GitHub:
https://github.com/Azure/Azure-Sentinel/tree/master/Sample%20Data
This has enough sample data for testing and getting my hands dirty and try to understand the full power of sentinel and how to leverage it. But I was wondering if there is a way or option about how to get those csv file (import) into sentinel portal.
I hope my question is clear and if not please don't not hesitate to ask more details.
Thank you so much for any help you can provide.
You can import them as custom logs:
https://learn.microsoft.com/en-us/azure/azure-monitor/agents/data-sources-custom-logs#define-a-custom-log
Additionally, check out the "Training Lab" solution in Content Hub in the Sentinel console. Installing this will populate data.
Related
I am trying to automate refunds report to google analytics 4. I can't find good documentation on importing this data using analytics management API. I came across https://www.npmjs.com/package/#google-analytics/data which seems to be good for pulling reports from GA but couldn't get a way of doing data import.
I am writing a nodejs script and was hoping someone has encountered this scenario before and could share how they accomplished it. Any help or point in the right direction will be really appreciated.
The alternative to the UA Analytics Management api is the Google Analytics Admin API for ga4
To my knowledge it doesn't support data important at this time the API is still under development it may come in the future there is no way to know.
I would suggest looking at the measurement protocol for ga4 you may be able to use that
Please could you all assist us in answering what we believe to be a rather simple question, but is proving to be really difficult to get a solution to. We have explored things like Data Bricks and Snowflake for our Azure based data warehouse, but keep getting stuck at the same point.
Do you have any info you could share with us around how you would move data from an Azure database (source) to another Azure database (destination) without using SSIS ?
We would appreciate any info you would be able to share with us on this matter.
Looking forward to hearing from you
Thanks
Dom
I'm working on some time series data that I want migrated to cloud. Working in Australia and PIE is stopping me from using Time Series Insights, so I've decided to use InfluxDb as my Time Series database.
I've set up a Grafana VM on Azure and installed InfluxDB in it.
The task where I'm stuck is.
1. Import a csv file (with time series data) to blob storage using Azure Data Factory (Have done this)
2. Use ADF to transfer the files to InfluxDb. (Need help here)
3. Do cool stuff on the data (have nice people in the team who're experts in this task)
Need help in point 2. Appreciate you putting your time to help me.
Thanks
Currently, ADF doesn't support influxdb as data source/sink.
Here is the list ADF supported.
I have a table storage in Azure where-in one of the tables is growing rapidly and I need to archive the tables for any data older than 90 days. Tried reading online and the only solution I can get online is to use Eventually consistent transactions pattern : https://azure.microsoft.com/en-us/documentation/articles/storage-table-design-guide/. Although the document takes an example of an employee table and can help me in achieving my objective, the intention of posting this question is to identify if there is a better solution.
Please note I am very new to Azure so might be missing a very easy step to achieve this.
Regards Tarun
The guide you are referencing is a good source. Note that if you are using Tables for logging data (has a common requirement for archiving older data) then you might want to look at blob storage instead - see the log data pattern in the guide you reference. Btw, AzCopy can also be used to export the data either to a blob or to local file system. See here for more information: https://azure.microsoft.com/en-us/documentation/articles/storage-use-azcopy/#copy-entities-in-an-azure-table-with-azcopy-preview-version-only.
I have an app running on Azure which logs (traces, really) to the Azure Diagnostics storage. I'm looking for a good tool which can be used to analyze these logs.
I know it's possible to retrieve these trace logs using the Server Explorer in Visual Studio, but this tool is a bit cumbersome. For instance, I can't specify a time interval for log records.
Also tried Azure Diagnostics Manager from Cerebrata, which is nice, but wonder if there any other good alternatives?
(The logging itself works just fine, it's the retrieval and analysis of the logs which I'm interested in)
Cerebrata certainly have the most complete solution for dealing with diagnostics and it's not especially expensive, but it does still cost money.
If you're just looking at the trace information then I've found that just querying the Azure Tables works well enough. If you're not able to convert a time into ticks in your head (which is what the PartitionKey of the table is), then you can use LINQPad. Jason Haley has provided full instructions and helper code.
Cerebrata's tool is probably the best to date to deal with diagnostics information.
Also try Stackify. Their DevOps solutions makes it really easy to remotely see server details needed for troubleshooting without using azure storage accounts. Check out this article: Windows Azure Diagnostics: The Bad, The Ugly, and a Better Way
I just came across this MSDN blog post. It hasn't been updated since September but looks like it has a rich enough feature set.