Supported Data

Data Schema Reference

The following is a list of supported data references both Azure and third party.

LogoMicrosoft Sentinel data source schema referenceMicrosoftLearn

Security Alert Data Schema

LogoMicrosoft Sentinel security alert schema referenceMicrosoftLearn

Windows Security Event Data Reference

LogoWindows security event sets that can be sent to Microsoft SentinelMicrosoftLearn

DNS Over AMA Reference

LogoMicrosoft Sentinel DNS over AMA connector reference - available fields and normalization schemaMicrosoftLearn

Purview Reference

LogoMicrosoft Purview Information Protection connector reference - audit log record types and activities support in Microsoft SentinelMicrosoftLearn

Last updated