Valid SC-200 Dumps shared by ExamDiscuss.com for Helping Passing SC-200 Exam! ExamDiscuss.com now offer the newest SC-200 exam dumps, the ExamDiscuss.com SC-200 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com SC-200 dumps with Test Engine here:
You plan to connect an external solution that will send Common Event Format (CEF) messages to Azure Sentinel. You need to deploy the log forwarder. Which three actions should you perform in sequence? To answer, move the appropriate actions form the list of actions to the answer area and arrange them in the correct order.
Correct Answer:
1 - Download and install the Log Analytics agent. 2 - Set the Log Analytics agent the listen on port 25226 and forward the CEF messages the Azure Sentinel. 3 - Configure the syslog daemon. Restart the syslog daemon and the Log Analytics agent. Reference: https://docs.microsoft.com/en-us/azure/sentinel/connect-cef-agent?tabs=rsyslog
