📢Microsoft Sentinel All-in-One v2📢

Apr 20, 2023

🔥🔥🔥JUST RELEASED🔥🔥🔥

📢Microsoft Sentinel All-in-One v2 by Javier Soriano and Gary Bushey 📢

Two years ago, the first version of Microsoft Sentinel All-in-One was launched. Today, we're even more excited to reveal an entirely revamped version, packed with the latest advancements in the product.

Microsoft Sentinel All-in-One is specifically designed to help customers and partners quickly establish a comprehensive Microsoft Sentinel environment. By simplifying the setup process and speeding up deployment, this solution saves time and effort, allowing you to focus on what really matters – securing your organization.

🆕What's New?

📌This updated version automates the following steps:

✔️Creates resource group
✔️Creates Log Analytics workspace
✔️Enables Microsoft Sentinel on top of the workspace
✔️Sets workspace retention, daily cap, and commitment tiers if desired
✔️Enables UEBA with the relevant identity providers (AAD and/or AD)
✔️Enables health diagnostics for Analytics Rules, Data Connectors, and Automation Rules
✔️Installs Content Hub solutions from a predefined list

📌Enables Data Connectors from this list:

✔️Azure Active Directory
✔️Azure Active Directory Identity Protection
✔️Azure Activity
✔️Dynamics 365
✔️Microsoft 365 Defender
✔️Microsoft Defender for Cloud
✔️Microsoft Insider Risk Management
✔️Microsoft Power BI
✔️Microsoft Project
✔️Office 365
✔️Threat Intelligence Platforms

📌Enables analytics rules (Scheduled and NRT) included in the selected Content Hub solutions

📌Enables analytics rules (Scheduled and NRT) that use any of the selected data connectors

📌Getting Started

Ready to experience the next generation of Microsoft Sentinel All-in-One? Head over to http://aka.ms/sentinel-all-in-one and begin your journey!

📚MS Tech Community: https://techcommunity.microsoft.com/t5/microsoft-sentinel-blog/announcing-microsoft-sentinel-all-in-one-v2/ba-p/3800037

Microsoft Security Sentinel

Discussion about this post