Use Splunk to Collect Logs from Office 365 and Azure AD

Microsoft has a lot of options to view Azure log data in one form or another. There is the Security Center, Azure Sentinel, Log Analytics, and Insights.  This is fine for an Azure centric organization, but many organizations already have log collection systems in place such as Splunk, and using multiple logging platforms is not efficient.  This article walks through sending Azure AD and Office 365 logs to Splunk.

Continue reading “Use Splunk to Collect Logs from Office 365 and Azure AD”

Site-to-Site Azure VPN with a Windows RRAS Server

Azure S2S VPN

This video shows how I created a VPN connection between my home lab and Azure Subscription.  I used a Routing and Remote Access role on a Windows Server 2019 as the local endpoint.  This provides the ability to setup a VPN connection without special firewall hardware.  This is useful for home labs and small offices that need connectivity to an Azure subscription.  It also is helpful to walk through the setup to prepare for Azure certifications such as the AZ-103.

Continue reading “Site-to-Site Azure VPN with a Windows RRAS Server”

Redeploy an Azure VM

Redeploy

In this video I reviews the Redeploy tool for Azure IaaS VM’s.  I give an overview of what the tool is used for and then a demo on how to run Redeploy against Windows and Linux VM’s through the Portal and using PowerShell and the Azure Cloud Shell.  This Video is for anyone who administrates Azure VM’s or interested in taking the AZ-103 certification exam.

Continue reading “Redeploy an Azure VM”

Troubleshooting and reporting VM performance data in Azure with PerfInsights

In this video, I walk through Azure Perfinsights, a performance reporting and troubleshooting tool for Windows and Linux Virtual Machines.

Azure Bastion Preview Setup Walk Through

In this video, I walk through the prerequisites and setup of the new Azure Bastion Service for IaaS servers.  Azure Bastion provides RDP and SSH access to Windows and Linux servers without the need for public IP’s or VPN connections.  Access is enabled through the Azure portal with an HTML5 client.

Continue reading “Azure Bastion Preview Setup Walk Through”

Grafana Dashboard powered with Raspberry Pi Displaying Log Analytics and Application Insights Data

In this video I go over creating a Grafana Dashboard with data from Azure Application Insights and Log Analytics including subscription cost information.  I configure Grafana to allow anonymous, read only access and then configure a Raspberry Pi with FullPage OS to display the data in kiosk mode.   This video draws on a lot of other information I have published as well as information available from the community.  Links to relevant information below.

Continue reading “Grafana Dashboard powered with Raspberry Pi Displaying Log Analytics and Application Insights Data”

Collect Custom Windows Event Logs in Log Analytics

Log AnalyticsAdding most Windows Event Logs to Log Analytics is a straightforward process.  Simply go to the Advanced properties in the Workspace > Windows Event Logs and start typing the name.  A pre-populated list will appear as shown below.  Selected the log and add it for collection.  But what if the log you are looking for is not listed in Log Analytics? Continue reading “Collect Custom Windows Event Logs in Log Analytics”