Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

optionally deploy Azure Sentinel solution into Tier 1 Log Analytics Workspace #281

Merged
merged 1 commit into from
Jul 7, 2021
Merged

optionally deploy Azure Sentinel solution into Tier 1 Log Analytics Workspace #281

merged 1 commit into from
Jul 7, 2021

Conversation

glennmusa
Copy link
Contributor

Description

Adds an Azure Sentinel deployment to the Tier 1 Log Analytics Workspace by default.

Users can opt-out of this in two ways:

  1. when invoking Terraform manually, supply a Terraform variable create_sentinel = false
  2. or, when using the deploy.sh script, passing the --no-sentinel flag.

To demo this, deploy as you usually would: src/scripts/deploy.sh -s ${my_sub_id}

To deploy without Azure Sentinel: src/scripts/deploy.sh -s ${my_sub_id} --no-sentinel

Issue reference

The issue this PR will close: #256

Checklist

Please make sure you've completed the relevant tasks for this PR, out of the following list:

  • Code compiles or validates correctly
  • BASH scripts have been validated using shellcheck
  • All tests pass (manual and automated)
  • The documentation is updated to cover any new or changed features
  • Markdown files have been linted using the recommended linter. (See .vscode/extensions.json.)
  • Relevant issues are linked to this PR

@glennmusa glennmusa changed the title add azure sentinel solution to laws optionally deploy Azure Sentinel solution into Tier 1 Log Analytics Workspace Jul 6, 2021
@glennmusa glennmusa enabled auto-merge (squash) July 7, 2021 13:17
Breanna-Stryker
Breanna-Stryker approved these changes Jul 7, 2021
View reviewed changes
Copy link
Contributor

@Breanna-Stryker Breanna-Stryker left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Successful test in commercial, LGTM

@glennmusa glennmusa merged commit 1d440f3 into main Jul 7, 2021
@glennmusa glennmusa deleted the glennmusa/addsecurityinsights branch July 7, 2021 15:33
jwaltireland pushed a commit to ARPA-H/AzureMissionLZ that referenced this pull request Nov 14, 2024
@glennmusa
add azure sentinel solution to laws (Azure#281)
15ad5f8
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Breanna-Stryker Breanna-Stryker Breanna-Stryker approved these changes

@shawngib shawngib Awaiting requested review from shawngib

@Phydeauxman Phydeauxman Awaiting requested review from Phydeauxman

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Deploy Azure Sentinel
2 participants
@glennmusa @Breanna-Stryker