Microsoft Security | Microsoft Sentinel
A cloud-native SIEM solution that provides intelligent security analytics and threat detection across systems
1,405 questions
1,405 questions with Microsoft Security | Microsoft Sentinel tags
1 answer
Bug Report: Sentinel Incident Page Crash - "ReactView frame failed to load" (Uncaught error in e.accountName)
Hello, I am experiencing a blocking issue when trying to open specific Incident Details pages in Microsoft Sentinel. The page crashes immediately with the error "ReactView frame failed to load". Technical Error Analysis: Based on the stack…
Microsoft Security | Microsoft Sentinel
asked 2025-12-09T18:38:49.9633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 68%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EL%3C/text%3E%3C/svg%3E)
Lucas
35
Reputation points
commented 2026-03-12T15:46:02.63+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 90%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPM%3C/text%3E%3C/svg%3E)
Pauline Mbabu
1,815
Reputation points Microsoft Employee
1 answer
Department field shows as “Unknown” in Sentinel Analytics Rule
Hi, When I create and run a query in Microsoft Sentinel, it correctly shows the user’s department. However, after creating a detection rule and reviewing the query results, the Department column appears as “Unknown.” Why does this happen?
Microsoft Security | Microsoft Sentinel
Microsoft Security | Microsoft Sentinel
A cloud-native SIEM solution that provides intelligent security analytics and threat detection across systems
1,405 questions
asked 2025-12-15T11:03:22.9333333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 46%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPR%3C/text%3E%3C/svg%3E)
Polina Romanova
0
Reputation points
commented 2026-03-12T15:15:51.88+00:00
Pauline Mbabu
1,815
Reputation points Microsoft Employee
2 answers
What is the resolution for status on incidents when they are on hold or escalated?
Hi, We are managed SOC using Azure Lighthouse for the incidents from our clients. Sometimes, we escalate incidents to our clients via our ticketing system. From management point of view, it is really difficult to differentiate an actively ongoing…
Microsoft Security | Microsoft Sentinel
Microsoft Security | Microsoft Sentinel
A cloud-native SIEM solution that provides intelligent security analytics and threat detection across systems
1,405 questions
asked 2025-12-19T12:57:47.5733333+00:00
Enis Aksu
5
Reputation points
commented 2026-03-12T14:57:40.1333333+00:00
Pauline Mbabu
1,815
Reputation points Microsoft Employee
1 answer
Intermittent "Missing Heartbeat" Alerts in Sentinel Even Though Logs Show No Gap
Hi everyone, I have an on-premises virtual machine onboarded to Azure Arc and I’m collecting Heartbeat logs using the Azure Monitor Agent (AMA) in Microsoft Sentinel. I created an analytics rule to trigger an alert if a heartbeat is missing for 10…
Microsoft Security | Microsoft Sentinel
Microsoft Security | Microsoft Sentinel
A cloud-native SIEM solution that provides intelligent security analytics and threat detection across systems
1,405 questions
asked 2026-03-12T09:49:00.31+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(208, 98%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMA%3C/text%3E%3C/svg%3E)
Muhammad Arif Ahmed
0
Reputation points
commented 2026-03-12T13:51:05.5366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 85%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVS%3C/text%3E%3C/svg%3E)
VEMULA SRISAI
9,430
Reputation points Microsoft External Staff
Moderator
0 answers
Issues with connecting Microsoft Sentinel to AWS manually, AWS SENTINEL not ingesting logs
I am referencing this page for instructions: https://learn.microsoft.com/en-us/azure/sentinel/connect-aws?tabs=s3#manual-setup However, the Microsoft Sentinel is still not ingesting logs from AWS. I have looked at the troubleshooting page as well to…
Microsoft Security | Microsoft Sentinel
Microsoft Security | Microsoft Sentinel
A cloud-native SIEM solution that provides intelligent security analytics and threat detection across systems
1,405 questions
asked 2025-12-30T14:57:37.41+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(310.4, 78%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
Milt
0
Reputation points
commented 2026-03-12T07:08:08.25+00:00
Pauline Mbabu
1,815
Reputation points Microsoft Employee
1 answer
Can we create and Run a function that is created using Basic Table in Microsoft Sentinel.
I created a function "ASim_Dns_CiscoUmbrella" which included a Basic table. When I ran the function is throughs an error "User-defined functions are not supported". Lets me know if we can use the Basic table to create a function or…
Microsoft Security | Microsoft Sentinel
Microsoft Security | Microsoft Sentinel
A cloud-native SIEM solution that provides intelligent security analytics and threat detection across systems
1,405 questions
asked 2026-03-09T06:01:25.0633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 12%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Sujit Support CLD
0
Reputation points
commented 2026-03-12T05:09:20.86+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 10%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Shubham Sharma
11,185
Reputation points Microsoft External Staff
Moderator
1 answer
how we can automate the Shadow IT Report
how we can automate the Shadow IT Report how we can automate the Shadow IT Report how we can automate the Shadow IT Report how we can automate the Shadow IT…
Microsoft Security | Microsoft Sentinel
Microsoft Security | Microsoft Sentinel
A cloud-native SIEM solution that provides intelligent security analytics and threat detection across systems
1,405 questions
asked 2026-03-09T06:40:18.99+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 98%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Akankshakeshri
0
Reputation points
commented 2026-03-11T07:51:55.16+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 99%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAK%3C/text%3E%3C/svg%3E)
Akanksha Keshri
0
Reputation points
1 answer
The closed Tickets are reopened in Microsoft sentinel automatically
In Microsoft sentinel some tickets are reopened automatically, and only same type of tickets are reopened and in the activity logs it is showing like: "Incident status was changed to New by Alert updated" can you tell me why?
Microsoft Security | Microsoft Sentinel
Microsoft Security | Microsoft Sentinel
A cloud-native SIEM solution that provides intelligent security analytics and threat detection across systems
1,405 questions
asked 2026-01-21T13:29:05.8633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(265.6, 70%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESK%3C/text%3E%3C/svg%3E)
Suprit Keste
0
Reputation points
answered 2026-03-10T13:23:52.16+00:00
Konstantinos Lianos
205
Reputation points Student Ambassador
1 answer
Do I use OIDC Role created in AWS for the Connecter role configuration in Microsoft Sentinel?
Follow instructions here: https://learn.microsoft.com/en-us/azure/sentinel/connect-aws?tabs=s3 Hello, I'm following the steps above and I have successfully setup the infrastructure where it's logging to the S3 bucket for GuardDuty, VPC Flow logs, and…
Microsoft Security | Microsoft Sentinel
Microsoft Security | Microsoft Sentinel
A cloud-native SIEM solution that provides intelligent security analytics and threat detection across systems
1,405 questions
asked 2026-01-22T15:00:25.2066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(166.4, 41%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EL%3C/text%3E%3C/svg%3E)
Lam
0
Reputation points
answered 2026-03-10T13:14:34.96+00:00
Konstantinos Lianos
205
Reputation points Student Ambassador
1 answer
Our tenant is blocked by a stale Unified Security Operations Platform / Defender XDR backend workspace association
Our tenant is blocked by a stale Unified Security Operations Platform / Defender XDR backend workspace association. The Sentinel Defender XDR connector shows: ‘One or more workspaces are onboarded to Unified Security Operations Platform. Incidents and…
Microsoft Security | Microsoft Sentinel
Microsoft Security | Microsoft Sentinel
A cloud-native SIEM solution that provides intelligent security analytics and threat detection across systems
1,405 questions
asked 2026-03-02T19:10:52.18+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(297.6, 57.00000000000001%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAG%3C/text%3E%3C/svg%3E)
Adam Gordon
0
Reputation points
answered 2026-03-10T13:07:21.9166667+00:00
Konstantinos Lianos
205
Reputation points Student Ambassador
0 answers
Sentinel Data Lake – Features unavailable for a specific workspace
I have a question regarding the configuration of the Sentinel Data Lake. A specific workspace does not appear under the following workspace scope in the Defender portal: Data lake exploration > KQL queries Could you tell me how to make it appear…
Microsoft Security | Microsoft Sentinel
Microsoft Security | Microsoft Sentinel
A cloud-native SIEM solution that provides intelligent security analytics and threat detection across systems
1,405 questions
asked 2026-03-10T01:39:45.9133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(265.6, 97%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EQU%3C/text%3E%3C/svg%3E)
QA User
0
Reputation points
commented 2026-03-10T03:29:18.06+00:00
Shubham Sharma
11,185
Reputation points Microsoft External Staff
Moderator
1 answer
Trying to connect Sailpoint ISC cloud connector
Ingestion is not working any idea on this where to check and i did all the steps suggested
Microsoft Security | Microsoft Sentinel
Microsoft Security | Microsoft Sentinel
A cloud-native SIEM solution that provides intelligent security analytics and threat detection across systems
1,405 questions
asked 2026-02-24T13:27:18.77+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(284.8, 96%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHK%3C/text%3E%3C/svg%3E)
Harry Krish
0
Reputation points
commented 2026-03-03T20:38:44.6366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 65%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPK%3C/text%3E%3C/svg%3E)
Pravallika KV
11,030
Reputation points Microsoft External Staff
Moderator
2 answers
View Incidents in not showing
From the last 2-3 days, in azure sentinel i couldn't find view incidents First it was like this Is there any fix to this i need to view all incidents in the same page, without this i am opening multiple incidents for every single workspace
Microsoft Security | Microsoft Sentinel
Microsoft Security | Microsoft Sentinel
A cloud-native SIEM solution that provides intelligent security analytics and threat detection across systems
1,405 questions
asked 2026-02-22T03:26:35.5733333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 72%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELK%3C/text%3E%3C/svg%3E)
Logesh Kumar
80
Reputation points
edited an answer 2026-02-26T17:46:04.2633333+00:00
Pauline Mbabu
1,815
Reputation points Microsoft Employee
1 answer
AMA Data Connectors Showing Disconnected While Legacy Shows Connected – How to Fix?
We have Windows Security Events configured via AMA and the DCR is properly in place. We are not using MMA. However, on the Data Connectors page, the legacy Windows Security Events connector shows as Connected, while Windows Security Events via AMA shows…
Microsoft Security | Microsoft Sentinel
Microsoft Security | Microsoft Sentinel
A cloud-native SIEM solution that provides intelligent security analytics and threat detection across systems
1,405 questions
asked 2026-02-13T12:11:12.8266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 18%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMA%3C/text%3E%3C/svg%3E)
Muhammad Ali
0
Reputation points
edited a comment 2026-02-25T12:59:51.95+00:00
Shubham Sharma
11,185
Reputation points Microsoft External Staff
Moderator
1 answer
One of the answers was accepted by the question author.
Ingesting Dhcp logs into ASimDhcpEventLogs
Is it possible to ingest Windows DHCP logs into the ASimDhcpEventLogs table? Currently, the logs are stored in a text file, and I was able to ingest them into a custom table in Sentinel. I have also deployed the asimdhcpevent parser from GitHub and am…
Microsoft Security | Microsoft Sentinel
Microsoft Security | Microsoft Sentinel
A cloud-native SIEM solution that provides intelligent security analytics and threat detection across systems
1,405 questions
asked 2025-09-19T02:07:46.5466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 42%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
Norah
20
Reputation points
edited a comment 2026-02-20T08:53:01.5833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 83%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJE%3C/text%3E%3C/svg%3E)
JESUS ENRIQUE CABRERA GALLARDO
0
Reputation points
1 answer
How to delete tables from sentinel?
Hi, How do I delete the entire table from sentinel? In order not to pay for retantion? Thanks
Microsoft Security | Microsoft Sentinel
Microsoft Security | Microsoft Sentinel
A cloud-native SIEM solution that provides intelligent security analytics and threat detection across systems
1,405 questions
asked 2026-02-15T18:21:41.1333333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 22%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
Alexandra Shalman
0
Reputation points
commented 2026-02-19T07:56:22.3533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(220.8, 92%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Sridevi Machavarapu
22,525
Reputation points Microsoft External Staff
Moderator
1 answer
One of the answers was accepted by the question author.
Defender for Cloud P2 500MB free data benefit not applying to SecurityEvents in Sentinel workspace
Hi! Have Microsoft Defender for Cloud Plan 2 enabled for approximately 1 week on multiple servers in our subscription. We are expecting the 500MB/day free data ingestion benefit per server to be applied to our Log Analytics/Sentinel workspace, however…
Microsoft Security | Microsoft Sentinel
Microsoft Security | Microsoft Sentinel
A cloud-native SIEM solution that provides intelligent security analytics and threat detection across systems
1,405 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(38.4, 16%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EI%3C/text%3E%3C/svg%3E)
0 answers
Missing Agent Management in Sentinel
My workspace is connected to my sentinel but when I look for the Workspace ID and keys there is nothing there. Can someone please let me know where I can find the workspace ID and Primary and secondary key that is used to connect my Linux rsyslog server.…
Microsoft Security | Microsoft Sentinel
Microsoft Security | Microsoft Sentinel
A cloud-native SIEM solution that provides intelligent security analytics and threat detection across systems
1,405 questions
asked 2026-01-06T21:54:45.92+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(112.00000000000001, 88%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EL%3C/text%3E%3C/svg%3E)
Lewis
5
Reputation points
commented 2026-02-16T15:50:42.1166667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 28.000000000000004%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECK%3C/text%3E%3C/svg%3E)
Catherine Kyalo
2,855
Reputation points Microsoft Employee
0 answers
Defender Unified portal migration - Sentinel Workspace is not visible in the Defender portal.
Hi, I'm planning to migrate the existing Sentinel workspace to the Defender portal. I followed the instructions from the Microsoft document and acquired all the necessary rights (Security Administrator + User Access Administrator + Contributor). But…
Microsoft Security | Microsoft Sentinel
Microsoft Security | Microsoft Sentinel
A cloud-native SIEM solution that provides intelligent security analytics and threat detection across systems
1,405 questions
asked 2026-02-10T13:56:03.38+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(99.2, 18%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERN%3C/text%3E%3C/svg%3E)
Rajaram N. (Natraj)
0
Reputation points
commented 2026-02-16T12:58:43.9866667+00:00
Catherine Kyalo
2,855
Reputation points Microsoft Employee
2 answers
connect VS code with sentinal logs
I am attempting to use Visual Studio Code to connect to a Microsoft Sentinel Log Analytics workspace to run KQL queries. However, Visual Studio Code appears to have no supported extension or supported method for connecting to Azure Monitor / Log…
Microsoft Security | Microsoft Sentinel
Microsoft Security | Microsoft Sentinel
A cloud-native SIEM solution that provides intelligent security analytics and threat detection across systems
1,405 questions
asked 2026-02-03T15:46:19.3066667+00:00
Biplab Roy
0
Reputation points
edited the question 2026-02-11T12:01:38.8+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(166.4, 95%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESD%3C/text%3E%3C/svg%3E)
Saraswathi Devadula
14,645
Reputation points Microsoft External Staff
Moderator