Nick Price
|
a51ffc2c08
|
Merge pull request #58 from Azure/workbook-updates
Workbook updates
|
2022-10-25 13:44:26 +11:00 |
|
Nick Price
|
399a4ac4dd
|
Merge pull request #57 from Azure/dcr-rule-syntax
Fix multiple instances of xpath non-compliance
|
2022-10-25 12:03:17 +11:00 |
Jimmy Fitzsimmons
|
3db5006c09
|
Update workbook ARM template
|
2022-10-03 16:33:05 +11:00 |
|
Jimmy Fitzsimmons
|
88ec2b7408
|
Update the software update timechart visualisation
|
2022-10-03 16:17:43 +11:00 |
|
Jimmy Fitzsimmons
|
c476f25b06
|
Update coverage summary visualisation
|
2022-10-03 16:16:44 +11:00 |
|
Jimmy Fitzsimmons
|
240cd7055e
|
Create KQL to support new update management heartbeat visualisation
|
2022-10-03 16:15:19 +11:00 |
|
Jimmy Fitzsimmons
|
f294143bb8
|
Filter account lockout event columns
|
2022-10-03 15:59:43 +11:00 |
|
Jimmy Fitzsimmons
|
71e4b4187e
|
Fix multiple instances of xpath non-compliance
|
2022-10-03 15:24:49 +11:00 |
|
Jimmy Fitzsimmons
|
1a21a57df8
|
Fix incorrect rendering of OS summary
|
2022-10-03 14:38:03 +11:00 |
|
Nick Price
|
c7207b43a6
|
Merge pull request #54 from Azure/azure-monitor-agent-policy
Enable AMA policies
|
2022-09-06 12:49:27 +10:00 |
|
Nick Price
|
37f47dc5e7
|
Merge pull request #53 from Azure/fix-dcr-targetting
Fix DCR targeting
|
2022-09-06 12:48:18 +10:00 |
|
Jimmy Fitzsimmons
|
299a18d322
|
Enable AMA policies
|
2022-07-09 21:09:32 +10:00 |
|
Jimmy Fitzsimmons
|
8a6f5e5d87
|
Remove output
|
2022-07-09 17:25:38 +10:00 |
|
Jimmy Fitzsimmons
|
ccd5116f0a
|
Go faster
|
2022-07-09 17:11:20 +10:00 |
|
Jimmy Fitzsimmons
|
49edd8780e
|
Update windowsImageIds to reference image, not version
|
2022-07-09 17:10:17 +10:00 |
|
Nick Price
|
a1f2866add
|
Merge pull request #52 from Azure/azure-arc-policies
Changes necessary for demonstrating Azure Arc management
|
2022-05-31 09:59:17 +10:00 |
|
Jimmy Fitzsimmons
|
597b9f7956
|
Update doc with Arc references
|
2022-05-29 09:04:44 +10:00 |
|
Jimmy Fitzsimmons
|
b863ad9f5d
|
Fix comment on Defender log collection level
|
2022-05-29 09:00:17 +10:00 |
|
Jimmy Fitzsimmons
|
fdbe8690f8
|
Enable VM insights
|
2022-05-29 08:43:38 +10:00 |
|
Jimmy Fitzsimmons
|
467eae8fd5
|
Fix typo in parameter name
|
2022-05-25 07:26:36 +10:00 |
|
Jimmy Fitzsimmons
|
73016571c0
|
Switch to VM insights initiative
|
2022-05-24 23:02:06 +10:00 |
|
Jimmy Fitzsimmons
|
a8196fe0aa
|
Fix string parameter case
|
2022-05-24 21:08:32 +10:00 |
|
Jimmy Fitzsimmons
|
365091d59f
|
Add missing parameter
|
2022-05-24 15:58:26 +10:00 |
|
Jimmy Fitzsimmons
|
9ca0fd9912
|
Update Azure Monitor policy assignment to include Arc
|
2022-05-24 10:12:51 +10:00 |
|
Jimmy Fitzsimmons
|
4dd088dfcc
|
Change bool to string
|
2022-05-24 07:50:26 +10:00 |
|
Jimmy Fitzsimmons
|
f6f352f106
|
Update policies to add Azure Arc machines to scope
|
2022-05-23 22:43:48 +10:00 |
|
Nick Price
|
5648d6acbd
|
Merge pull request #50 from Azure/docs-la-data-sources-events
Minor documentation changes around event collection
|
2022-02-16 17:11:52 +11:00 |
|
Jimmy Fitzsimmons
|
89603c11ea
|
Documentation updates
|
2022-02-16 17:06:05 +11:00 |
|
Nick Price
|
b214641cc7
|
Merge pull request #49 from Azure/gc-build-github-action
Add GH action and docs for GC build
|
2022-02-16 00:23:52 +11:00 |
|
Jimmy Fitzsimmons
|
f60aca574f
|
Add GH action and docs for GC build
|
2022-02-15 19:27:58 +11:00 |
|
Nick Price
|
16d5c1d648
|
Merge pull request #48 from Azure/fix-roleDefinitionIds-issue
Fix multiple roleDefinitionIds issue #47
|
2022-02-15 13:38:42 +11:00 |
|
Nick Price
|
5df2ca312d
|
Merge pull request #46 from Azure/fix-wdac-policy-name
Update WDAC policy name #43
|
2022-02-15 11:37:03 +11:00 |
|
Jimmy Fitzsimmons
|
47e7e99231
|
Fixes issue #47
|
2022-02-12 12:48:34 +11:00 |
|
Jimmy Fitzsimmons
|
69a9d8297e
|
Update WDACR policy name #43
|
2022-02-12 08:29:47 +11:00 |
|
Nick Price
|
b13996864c
|
Merge pull request #45 from Azure/optimize-event-collection
Optimize event collection
|
2022-02-07 14:18:48 +11:00 |
|
Jimmy Fitzsimmons
|
6156c6a7a0
|
Update docs for this PR
|
2022-02-05 15:20:41 +11:00 |
|
Jimmy Fitzsimmons
|
f9de3acd33
|
Merge pull request #44 from Azure/fix#41-doco
Fix#41 doco
|
2022-02-05 14:59:04 +11:00 |
|
Jimmy Fitzsimmons
|
04996efa47
|
Update sample workbook and ARM template
|
2022-02-05 14:58:07 +11:00 |
|
Jimmy Fitzsimmons
|
f9eba5bbbc
|
Update sample workbook KQL
|
2022-02-05 14:06:14 +11:00 |
|
Jimmy Fitzsimmons
|
4ce4d63fee
|
Updated IPsec detection KQL snippets to use Event table source
|
2022-02-05 13:04:26 +11:00 |
|
Jimmy Fitzsimmons
|
67b5a9c9a1
|
Updated IPsec detection KQL snippets to use Event table source
|
2022-02-05 13:04:12 +11:00 |
|
Nick Price
|
8da7ba2308
|
Update README.md
fix #41 doco updates
|
2022-02-04 14:36:51 +11:00 |
|
Nick Price
|
c933231192
|
fix #41
- remove automanage references from documentation
- fix formatting
|
2022-02-04 14:35:59 +11:00 |
|
Jimmy Fitzsimmons
|
e34bc6af87
|
Set the subscription log workspace
|
2022-01-30 15:29:48 +11:00 |
|
Jimmy Fitzsimmons
|
03c8c88e7b
|
Remove collection of whole logs
|
2022-01-30 15:13:16 +11:00 |
|
Jimmy Fitzsimmons
|
c7716a75e0
|
Install Azure Monitor agent on Windows VMs
|
2022-01-30 13:58:22 +11:00 |
|
Jimmy Fitzsimmons
|
70b23f6933
|
Fix event collection tier
|
2022-01-29 18:55:14 +11:00 |
|
Jimmy Fitzsimmons
|
1e786f6599
|
Applied workaround for insufficient policy role
|
2022-01-29 16:08:19 +11:00 |
|
Jimmy Fitzsimmons
|
e866687576
|
Revised documentation to reflect Azure Defender log collection change
|
2022-01-29 12:39:02 +11:00 |
|
Jimmy Fitzsimmons
|
ec4d254add
|
Set ASC security log collection to Common
|
2022-01-29 11:55:11 +11:00 |