title | description | author | ms.topic | ms.date | ms.service | ms.author | ms.collection |
---|---|---|---|---|---|---|---|
Azure Logic Apps connector for Microsoft Sentinel |
Learn how to install the connector Azure Logic Apps to connect your data source to Microsoft Sentinel. |
cwatson-cat |
how-to |
04/26/2024 |
microsoft-sentinel |
cwatson |
sentinel-data-connector |
Azure Logic Apps is a cloud-based platform for creating and running automated workflows that integrate your apps, data, services, and systems. This connector lets you stream your Azure Logic Apps diagnostics logs into Microsoft Sentinel, allowing you to continuously monitor activity.
This is autogenerated content. For changes, contact the solution provider.
Connector attribute | Description |
---|---|
Log Analytics table(s) | AzureDiagnostics (Logic Apps) |
Data collection rules support | Not currently supported |
Supported by | Microsoft Corporation |
All logs
AzureDiagnostics
| where ResourceProvider == "MICROSOFT.LOGIC"
Count By Workflows
AzureDiagnostics
| where ResourceProvider == "MICROSOFT.LOGIC"
| summarize count() by resource_workflowName_s
To integrate with Azure Logic Apps make sure you have:
- Policy: owner role assigned for each policy assignment scope
Connect your Logic Apps diagnostics logs into Sentinel.
This connector uses Azure Policy to apply a single Azure Logic Apps log-streaming configuration to a collection of instances, defined as a scope. Follow the instructions below to create and apply a policy to all current and future instances. Note, you may already have an active policy for this resource type.
For more information, go to the related solution in the Azure Marketplace.