![]() ![]() It is feature rich in time series analytics, log analytics, full text search, advanced analytics (e.g., pattern recognition, forecasting, anomaly detection), visualization, scheduling, orchestration, automation, and many more native capabilities. It provides low latency, high throughput ingestions with lightning speed queries over extremely large volumes of data. ADX can be a great service to leverage in these cases, where the need to access older data exists, but at the same time customers want to save some costs on data retention.ĪDX is a big data analytics platform that is highly optimized for all types of logs and telemetry data analytics. Just due to regulatory requirements, but in some other cases they need to be able to run investigations on older data. As you may know, data retention in Sentinel is free for 90 days, after that, it is charged.Ĭustomers normally need to keep data accessible for longer than three months. One of the common questions that we get from customers and partners is how to save money on their Microsoft Sentinel bill, retention costs being one of the areas that can be optimized. ![]() In this blog post, we will explain how you can use Azure Data Explorer (will be referred to in this blog post as ADX from now on) as a secondary log store and when this might be appropriate for your organization. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |