INFO: Long term retention/storage of logs from Azure Sentinel | Kurt Shintaku's Blog

Posted by: kurtsh | September 14, 2020

INFO: Long term retention/storage of logs from Azure Sentinel

So you’re gonna expand your Azure Sentinel log data retention?

If you need to keep your logs for compliance reasons for a longer priod

Out of the box, Azure Sentinel provides 90 days of data retention for free. In some parts of the world and within certain industries, there are regulations that organizations must adhere to which require data retention up to 7 years or longer. The current challenge is that the max retention for Log Analytics workspaces is 2 years. There has been a need for a solution that will allow for more time and cost saving by moving logs to cold storage. This blog is going to detail how logs from a Log Analytics workspace can easily be moved into long-term cold storage in order to comply with retention standards as well as reduce costs using this Playbook.

BLOG: Move Your Azure Sentinel Logs to Long-Term Storage with Ease
https://techcommunity.microsoft.com/t5/azure-sentinel/move-your-azure-sentinel-logs-to-long-term-storage-with-ease/ba-p/1407153

Posted in Uncategorized

Categories

%d bloggers like this: