{"id":8055,"date":"2024-06-26T12:23:35","date_gmt":"2024-06-26T12:23:35","guid":{"rendered":"https:\/\/pariswells.com\/blog\/?p=8055"},"modified":"2024-06-26T12:23:38","modified_gmt":"2024-06-26T12:23:38","slug":"how-to-setup-an-ubuntu-syslog-server-for-ama-monitor-log-ingestion-for-sentinel","status":"publish","type":"post","link":"https:\/\/pariswells.com\/blog\/research\/how-to-setup-an-ubuntu-syslog-server-for-ama-monitor-log-ingestion-for-sentinel","title":{"rendered":"How to setup an Ubuntu SYSLOG Server for AMA Monitor Log Ingestion for Sentinel"},"content":{"rendered":"\n<p><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code class=\"\">sudo apt update\n\nsudo apt-get update\n\nsudo apt install rsyslog\n\nsudo apt install net-tools\n\nsudo apt install policycoreutils\n\n<code>sudo wget -O Forwarder_AMA_installer.py https:\/\/raw.githubusercontent.com\/Azure\/Azure-Sentinel\/master\/DataConnectors\/Syslog\/Forwarder_AMA_installer.py&amp;&amp;sudo python3 Forwarder_AMA_installer.py<\/code><\/code><\/pre>\n\n\n\n<p>Fortinet <\/p>\n\n\n\n<pre class=\"wp-block-code\"><code class=\"\">config log syslogd setting\nset status enable\nset format cef\nset port 514\nset server 10.50.10.17\nset source-ip 10.20.10.1\nend<\/code><\/pre>\n\n\n\n<p>sudo wget -O cef_troubleshoot.py https:\/\/raw.githubusercontent.com\/Azure\/Azure-Sentinel\/master\/DataConnectors\/CEF\/cef_troubleshoot.py&amp;&amp;sudo python3 cef_troubleshoot.py<\/p>\n\n\n\n<p><a href=\"https:\/\/learn.microsoft.com\/en-us\/azure\/sentinel\/connect-cef-syslog-ama?tabs=portal\">https:\/\/learn.microsoft.com\/en-us\/azure\/sentinel\/connect-cef-syslog-ama?tabs=portal<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Fortinet sudo wget -O cef_troubleshoot.py https:\/\/raw.githubusercontent.com\/Azure\/Azure-Sentinel\/master\/DataConnectors\/CEF\/cef_troubleshoot.py&amp;&amp;sudo python3 cef_troubleshoot.py https:\/\/learn.microsoft.com\/en-us\/azure\/sentinel\/connect-cef-syslog-ama?tabs=portal<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-8055","post","type-post","status-publish","format-standard","hentry","category-research"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/posts\/8055","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/comments?post=8055"}],"version-history":[{"count":1,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/posts\/8055\/revisions"}],"predecessor-version":[{"id":8056,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/posts\/8055\/revisions\/8056"}],"wp:attachment":[{"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/media?parent=8055"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/categories?post=8055"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/tags?post=8055"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}