From the course: Implementing and Administering Microsoft Sentinel
Join today to access over 24,900 courses taught by industry experts.
Integrating with Microsoft Defender and Purview
From the course: Implementing and Administering Microsoft Sentinel
Integrating with Microsoft Defender and Purview
Now we're going to take a look at integration between Microsoft Sentinel and the Microsoft Defender and Purview solutions. There are a number of connectors here, and some rebranding you'll want to be aware of so you can find the connectors that match those services. So the Microsoft 365 family includes Defender for Cloud, Cloud Apps, Endpoint, Identity, IoT, and Defender for Office 365. You'll also find the Microsoft Purview Information Protection connector. This was previously Microsoft Information Protection and then the Microsoft Purview Insider Risk Management connector that was previously Microsoft 365 Insider Risk Management. So just a branding change, but something you'll want to be aware of when you're looking for those connectors in the Sentinel interface. And just a tip from the real-world here, it's recommended to allow configuration wizards with these services to disable any existing incident creation rules, and Sentinel for these services when you're enabling these…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.