Windows Firewall

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊

Back to Connectors Index

Attribute Value
Connector ID WindowsFirewall
Publisher Microsoft
Used in Solutions Windows Firewall
Collection Method MMA
Connector Definition Files Windows%20Firewall.JSON
Microsoft Learn View on Learn

Windows Firewall is a Microsoft Windows application that filters information coming to your system from the Internet and blocking potentially harmful programs. The software blocks most programs from communicating through the firewall. Users simply add a program to the list of allowed programs to allow it to communicate through the firewall. When using a public network, Windows Firewall can also secure the system by blocking all unsolicited attempts to connect to your computer. For more information, see the Microsoft Sentinel documentation.

Tables Ingested

This connector ingests data into the following tables:

Table Transformations Ingestion API Lake-Only
WindowsFirewall ?

Permissions

Resource Provider Permissions:

Setup Instructions

⚠️ Note: These instructions were automatically generated from the connector's user interface definition file using AI and may not be fully accurate. Please verify all configuration steps in the Microsoft Sentinel portal.

1. Download and install the agent

Windows Firewall logs are collected only from Windows agents. Choose where to install the agent:

Install agent on Azure Windows Virtual Machine

Download the agent on the relevant machine and follow the instructions.

Install agent on non-Azure Windows Machine

Select the machine to install the agent and then click Connect.

2. Install Windows Firewall solution

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊

Back to Connectors Index