Elastic Agent Solution
Solution: ElasticAgent
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Publisher | Microsoft Corporation |
| Support Tier | Microsoft |
| Support Link | https://support.microsoft.com |
| Categories | domains |
| Version | 2.0.0 |
| Author | Microsoft - support@microsoft.com |
| First Published | 2021-11-12 |
| Solution Folder | ElasticAgent |
| Marketplace | Azure Marketplace · Popularity: ⚪ Very Low (0%) |
The Elastic Agent solution provides the capability to ingest Elastic Agent logs, metrics, and security data into Microsoft Sentinel.
Underlying Microsoft Technologies used:
This solution takes a dependency on the following technologies, and some of these dependencies either may be in Preview state or might result in additional ingestion or operational costs:
a. Agent based logs collection from Windows and Linux machines
Contents
Data Connectors
This solution provides 1 data connector(s):
Tables Used
This solution uses 1 table(s):
| Table | Used By Connectors | Used By Content |
|---|---|---|
ElasticAgentLogs_CL |
Elastic Agent | - |
Content Items
This solution includes 1 content item(s) (0 in solution, 1 discovered 🔍):
| Content Type | Total | In Solution | Discovered |
|---|---|---|---|
| Parsers | 1 | 0 | 1 |
Parsers
| Name | Description | Tables Used |
|---|---|---|
| ElasticAgentEvent ⚠️ | - | ElasticAgentLogs_CL (read) |
⚠️ Items marked with ⚠️ are not listed in the Solution JSON file. They were discovered by scanning the solution folder and may be legacy items, under development, or excluded from the official solution package.
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊