The Azure Quickstart templates are currently available in English
This template creates and configures a Syslog server with an onboarded Azure Sentinel Agent for a specified workspace.
Esta plantilla de Azure Resource Manager (ARM) la creó un miembro de la comunidad, no Microsoft. Su propietario (no Microsoft) le permite usar las plantillas de ARM con arreglo a un contrato de licencia. Microsoft no se responsabiliza de ninguna plantilla de ARM que le proporcionen los miembros de la comunidad (o cuya licencia le otorguen) en cuanto a su seguridad, compatibilidad ni rendimiento. Las plantillas de ARM de la comunidad no reciben ningún tipo de soporte en ningún servicio ni programa de soporte de Microsoft. Dichas plantillas se proporcionan TAL CUAL, sin garantía de ningún tipo.
Parámetros
| Nombre del parámetro | Descripción |
|---|---|
| vmName | Hostname of the virtual machine. |
| vmAdminUserName | User name of the administrator account of the virtual machine. |
| vmAdminPassword | Password of the administrator account of the virtual machine |
| dnsLabelPrefix | DNS Label for the Public IP. Must be lowercase. It should match with the following regular expression: ^[a-z][a-z0-9-]{1,61}[a-z0-9]$ or it will raise an error. |
| workspaceId | The ID of the log analytics workspace where you want to forward the logs. To find it, go to your workspace and you will have both the workspace ID and Primary key in the 'Agent management' tab. |
| primaryKey | The key to authenticate to the log analytics workspace where you want to forward the logs. To find it, go to your workspace and you will have both the workspace ID and Primary key in the 'Agent management' tab. |
| vmUbuntuOSVersion | Version of the Ubuntu OS. |
| vmSize | Size of the virtual machine's disk |
| location | Location where resources should be deployed. |
| _artifactsLocation | The base URI where artifacts required by this template are located including a trailing '/' |
| _artifactsLocationSasToken | The sasToken required to access _artifactsLocation. When the template is deployed using the accompanying scripts, a sasToken will be automatically generated. Use the defaultValue if the staging location is not secured. |
Uso de la plantilla
PowerShell
New-AzResourceGroup -Name <resource-group-name> -Location <resource-group-location> #use this command when you need to create a new resource group for your deploymentInstalar y configurar PowerShell de Azure
New-AzResourceGroupDeployment -ResourceGroupName <resource-group-name> -TemplateUri https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/alsid-syslog-proxy/azuredeploy.json
Línea de comandos
az group create --name <resource-group-name> --location <resource-group-location> #use this command when you need to create a new resource group for your deploymentInstalación y configuración de la interfaz de línea de comandos multiplataforma de Azure
az group deployment create --resource-group <my-resource-group> --template-uri https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/alsid-syslog-proxy/azuredeploy.json