AZ-801 · Question #144
AZ-801 Question #144: Real Exam Question with Answer & Explanation
The correct answer is A: Yes. Installing the Log Analytics agent on Server1 meets the goal of collecting Windows Firewall logs in Microsoft Sentinel, as the agent is essential for data ingestion from Windows machines.
Question
You have an on-premises server named Server1 that runs Windows Server. You have a Microsoft Sentinel instance. You add the Windows Firewall data connector in Microsoft Sentinel. You need to ensure that Microsoft Sentinel can collect Windows Firewall logs from Server1. Solution: You install the Log Analytics agent on Server1. Does this meet the goal?
Options
- AYes
- BNo
Explanation
Installing the Log Analytics agent on Server1 meets the goal of collecting Windows Firewall logs in Microsoft Sentinel, as the agent is essential for data ingestion from Windows machines.
Common mistakes.
- B. This option states "No", which is incorrect because installing the Log Analytics agent is the correct solution for collecting Windows Firewall logs for Microsoft Sentinel.
Concept tested. Sentinel Windows Firewall Log Analytics agent
Reference. https://learn.microsoft.com/en-us/azure/sentinel/connect-windows-firewall
Topics
Community Discussion
No community discussion yet for this question.