How to work around the Azure Security Agent extension not deploying by default on the latest VM windows images, a currently know limitation…

ByThomas Verheyden

Intro This blog will be about an issue I bumped into when deploying one of the enhanced protection features in defender for cloud. The enhanced feature, adaptive application control, requires the deployment of the Azure Monitor Agent. The Azure Monitoring Agent also installs additional extensions. One of those additional extensions is the Azure Security Agent…

Tutorial: Change the workspace destination of your already provisioned Data Collection Rule used by the Azure Monitoring Agent

Tutorial: Change the workspace destination of your already provisioned Data Collection Rule used by the Azure Monitoring Agent

ByThomas Verheyden

Intro This post is inspired on different setups I saw while working with my clients. More and more clients are leveraging the Azure Monitoring Agent (AMA) and Data Collection Rules (DCR) to collect log data. I’ve noticed that clients sometimes are sending logs data to different Log Analytics Workspace (LAW), without them being aware. Most…