Has anyone tried to connect multiple Palo Alto devices to Azure OMS for the purpose of using Log Analytics? We currently have a server configured to forward Palo Alto syslog files to OMS, but from what I can see there doesn't appear to be any OMS solutions that deal with the kind of data that is coming from the Palo Alto devices. What we are looking for is a way to view potential threats or patterns on the basis of data that is coming into OMS across multiple devices. The idea is to avoid having to log into each device to check for user activity. A centralized dashboard which shows activity across devices would be ideal.
Does anyone have any suggestions or experience with regard to this type of scenario?
The best tool for a central view of threats accross many firewalls is to use Panorama. There are several options for deploying Panorama to collect Azure VM-Series firewalls. Please work with your sales team for details.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!