跳过导航

Azure Sentinel定价

将云本机 SIEM 和智能安全分析应用于工作,以帮助保护企业

Microsoft Sentinel provides intelligent security analytics across your enterprise. The data for this analysis is stored in an Azure Monitor Log Analytics workspace. Microsoft Sentinel is billed based on the volume of data ingested for analysis in Microsoft Sentinel and stored in the Azure Monitor Log Analytics workspace. Microsoft Sentinel offers a flexible and predictable pricing model. There are two ways to pay for the Microsoft Sentinel service: Capacity Reservations and Pay-As-You-Go.

浏览定价选项

应用筛选器来根据你的需求自定义定价选项。

Prices are estimates only and are not intended as actual price quotes. Actual pricing may vary depending on the type of agreement entered with Microsoft, date of purchase, and the currency exchange rate. Prices are calculated based on US dollars and converted using Thomson Reuters benchmark rates refreshed on the first day of each calendar month. Sign in to the Azure pricing calculator to see pricing based on your current program/offer with Microsoft. Contact an Azure sales specialist for more information on pricing or to request a price quote. See frequently asked questions about Azure pricing.

Commitment Tiers

With Commitment tiers you are billed a fixed fee based on the selected tier, enabling a predictable total cost for Microsoft Sentinel. Commitment tier provides you a discount on the cost based on your selected commitment tier compared to Pay-As-You-Go pricing. You have the flexibility to opt out of the capacity tier any time after the first 31 days of commitment. Prices shown below are related to the analytics enabled by Microsoft Sentinel and do not include the related data ingestion charges for Log Analytics. Please refer to the Azure Monitor Log Analytics pricing for the related data ingestion charges.

Price Tier Price Effective Per GB Price1 Savings Over Pay-As-You-Go
100 GB per day $- per day $-/GB $-
200 GB per day $- per day $-/GB $-
300 GB per day $- per day $-/GB $-
400 GB per day $- per day $-/GB $-
500 GB per day $- per day $-/GB $-
1,000 GB per day $- per day $-/GB $-
2,000 GB per day $- per day $-/GB $-
5,000 GB per day $- per day $-/GB $-

1Data ingested into Microsoft Sentinel exceeding the selected daily commitment tier is charged at the effective tier prices listed above.

Pay-As-You-Go

With Pay-As-You-Go pricing, you are billed per gigabyte (GB) for the volume of data ingested for analysis in Microsoft Sentinel and stored in the Azure Monitor Log Analytics workspace. Data volume is measured by the volume of data that will be stored in GB (10^9 bytes). Prices shown below are related to the security analytics enabled by Microsoft Sentinel. Prices shown below are related to the analytics enabled by Microsoft Sentinel and do not include the related data ingestion charges for Log Analytics. Please refer to the Azure Monitor Log Analytics pricing for the related data ingestion charges.

Charges for Microsoft Sentinel will go into effect on November 1, 2019.

Feature Price
Microsoft Sentinel $- per GB-ingested

Free Trial

Try Microsoft Sentinel free for the first 31 days. Microsoft Sentinel can be enabled at no additional cost on an Azure Monitor Log Analytics workspace, subject to the limits stated below.

  • New workspaces can ingest up to 10GB/day of log data for the first 31-days at no cost. Both Log Analytics data ingestion and Microsoft Sentinel charges are waived during the 31-day trial period. This free trial is subject to a 20 workspace limit per Azure tenant.
  • Existing workspaces can enable Microsoft Sentinel at no additional cost. Only the Microsoft Sentinel charges are waived during the 31-day trial period.

Usage beyond these limits will be charged per pricing listed on this page. Charges related to additional capabilities for automation and bring your own machine learning are still applicable during the free trial.

Data Retention

Once Microsoft Sentinel is enabled on your Azure Monitor Log Analytics workspace, every GB of data ingested into the workspace can be retained at no charge for the first 90 days. Retention beyond 90 days will be charged per the standard Azure Monitor Log Analytics retention prices.

Azure Monitor Log Analytics

Microsoft Sentinel is built on the proven foundation of Azure Monitor Log Analytics platform and enables an extensive query language to analyze, interact with, and derive insights from huge volumes of operational data in seconds. Microsoft Sentinel is billed based on the volume of data ingested for analysis in Microsoft Sentinel and stored in Azure Monitor Log Analytics workspace. Please refer to the Azure Monitor Log Analytics pricing for the related data ingestion charges.

Automation and Bring your own Machine Learning

Microsoft Sentinel integrates with many other Azure services providing enhanced capabilities for Security Information and Event Management (SIEM) and Security Orchestration and Automation and Response (SOAR). Some of these services may have additional charges:

Azure 定价和购买选项

直接与我们联系

获取 Azure 定价演练。了解你的云解决方案的定价、学习成本优化并请求自定义建议。

与销售专家交谈

查看购买方式

通过 Azure 网站、Microsoft 代表或 Azure 合作伙伴购买 Azure 服务。

浏览你的选项

其他资源

Azure Sentinel 详细信息

详细了解 Azure Sentinel 特性和功能。

定价计算器

估计每月使用任何 Azure 产品组合应产生的费用。

SLA

查看此产品的服务级别协议。

文档

查看技术教程、视频和更多 Azure Sentinel 资源。

  • New and existing Microsoft Sentinel customers can import AWS CloudTrail logs for free until June 30, 2020. Applicable data is ingested using the AWS CloudTrail data connector in Microsoft Sentinel.
  • Commitment tiers allow you to reserve a fixed amount of daily data ingestion capacity for Azure Monitor and Microsoft Sentinel for a fixed, predictable daily fee. You can upgrade your requested commitment at any time. However, the minimum commitment period before you can opt out or reduce your capacity reservation is 31 days.

    • Adding more capacity to your commitment tier – You can upgrade your requested commitment at any time. Your new commitment tier will be effective at the start of the next UTC day.
    • Reducing your selected commitment tier – You can reduce your commitment tier or opt out entirely from the commitment tier model after the first 31 days. This 31-day clock resets every time you make any change (increase or decrease) to your selected commitment tier. Your new commitment tier or business model choice will be effective at the start of the next UTC day.
  • You can opt into a commitment tier at any time. Once you opt in, you will continue to be in your selected commitment tier unless you decide to opt out to a different pricing model or upgrade or downgrade your commitment tier.
  • Commitment tiers are applicable at a workspace level and cannot be grouped across workspaces or subscriptions.
  • Azure Activity Logs, Office 365 Audit Logs (all SharePoint activity and Exchange admin activity) and alerts from Microsoft Defender products (Azure Defender, Microsoft 365 Defender, Microsoft Defender for Office 365, Microsoft Defender for Identity, Microsoft Defender for Endpoint), Azure Security Center and Microsoft Cloud App Security can be ingested at no additional cost into both Microsoft Sentinel and Azure Monitor Log Analytics.

    Please Note: Azure Active Directory (AAD) audit data is not free and is billed for ingestion into both Microsoft Sentinel and Azure Monitor Log Analytics.

  • Any Azure services that you use in addition to Microsoft Sentinel are charged per their applicable pricing. For example – Log Analytics, Logic Apps, Machine Learning, etc.
  • There are no additional charges for Microsoft Sentinel features that are in preview (indicated by a “Preview” tag) beyond associated data ingestion and retention costs. Pricing for features that are in preview will be announced in the future and a notice will be provided prior to the end of the preview. Should you choose to continue using preview features after the notice period, you will be billed at the applicable rates.

与销售专家交谈,演练 Azure 定价情况。了解你的云解决方案的定价。

获取免费云服务和价值 $200 的赠金来探索 Azure 30 天。

添加到估价。 按“V”在计算器上查看
可以给你提供什么帮助?