Comments (9)
Hi @CyberHunter7 , Thanks for flagging this issue, we will investigate this issue and get back to you with some updates by 26Mar24. Thanks!
from azure-sentinel.
Hi @CyberHunter7 ,Working on detailed analysis for further replication and changes,will update you
from azure-sentinel.
Hi @CyberHunter7 ,Working on detailed analysis for further replication and changes,will update you
Thank you @v-muuppugund for the update.
from azure-sentinel.
Hi @CyberHunter7 ,Still need some more time for completing the detailed analysis for this issue, will post update once done.
from azure-sentinel.
Hi @CyberHunter7 ,I am able to replicate the issue and the data is not ingested from guard duty in to AWS Security hub, we have done the complete analysis for this requirement and will be picking up in our queue and will update you once the changes have been completed.Please let me know if you have any questions we can have a detailed discussion on this requirement.
from azure-sentinel.
Hi @CyberHunter7 ,I am able to replicate the issue and the data is not ingested from guard duty in to AWS Security hub, we have done the complete analysis for this requirement and will be picking up in our queue and will update you once the changes have been completed.Please let me know if you have any questions we can have a detailed discussion on this requirement.
Hi @v-muuppugund thanks for the update, is there any workaround for the mean time ? is there an estimate when this issue will be resolved ?
from azure-sentinel.
Hi @CyberHunter7 ,I am able to replicate the issue and the data is not ingested from guard duty in to AWS Security hub, we have done the complete analysis for this requirement and will be picking up in our queue and will update you once the changes have been completed. Please let me know if you have any questions we can have a detailed discussion on this requirement.
Hi @v-muuppugund thanks for the update, is there any workaround for the mean time ? is there an estimate when this issue will be resolved ?
Hi @CyberHunter7 ,Apologies as of now ,with generated_id from guard duty and no filters the data is not coming up,Please find below screen shot for reference
even gaurd duty is enabled
Could you please check any logs are present in guard duty for the region using in AWS security hub connector
from azure-sentinel.
Hi @CyberHunter7 ,I am able to replicate the issue and the data is not ingested from guard duty in to AWS Security hub, we have done the complete analysis for this requirement and will be picking up in our queue and will update you once the changes have been completed. Please let me know if you have any questions we can have a detailed discussion on this requirement.
Hi @v-muuppugund thanks for the update, is there any workaround for the mean time ? is there an estimate when this issue will be resolved ?
Hi @CyberHunter7 ,Apologies as of now ,with generated_id from guard duty and no filters the data is not coming up,Please find below screen shot for reference even gaurd duty is enabled
Could you please check any logs are present in guard duty for the region using in AWS security hub connector
Hi @v-muuppugund I checked again no logs are present. I understand there is no quick fix for this that can be available, is that correct ?
from azure-sentinel.
Hi @CyberHunter7 ,I am able to replicate the issue and the data is not ingested from guard duty in to AWS Security hub, we have done the complete analysis for this requirement and will be picking up in our queue and will update you once the changes have been completed. Please let me know if you have any questions we can have a detailed discussion on this requirement.
Hi @v-muuppugund thanks for the update, is there any workaround for the mean time ? is there an estimate when this issue will be resolved ?
Hi @CyberHunter7 ,Apologies as of now ,with generated_id from guard duty and no filters the data is not coming up,Please find below screen shot for reference even gaurd duty is enabled
Could you please check any logs are present in guard duty for the region using in AWS security hub connector
Hi @v-muuppugund I checked again no logs are present. I understand there is no quick fix for this that can be available, is that correct ?
Hello @v-muuppugund any updates ?
from azure-sentinel.
Related Issues (20)
- Cisco Support DEAD (MERAKI = Linux) ? HOT 2
- Intermittent Entity mapping from Defender Incidents HOT 8
- Cloudflare Missing columns/tables HOT 1
- Redundant rule templates about MFA Rejection/Deny HOT 7
- Unable to delete Threat Intelligence Upload Indicators API (Preview) dataconnector HOT 16
- Azure-Sentinel/Tools /Sentinel-All-In-One: Possibility to add tags HOT 6
- GoogleWorkspaceReports - getting API error, Quota exceeded for quota metric HOT 16
- URI pattern being used is being flagged by ttk HOT 5
- Dynatrace Solution missing list of playbooks in Azure Portal on install HOT 6
- Missing Logs from Entra ID on Sentinel HOT 16
- VMware Carbon Black Cloud (using Function app) data connector not ingesting full three type of logs - Sentinel HOT 9
- Missing incident description on Microsoft Defender XDR incidents created by Microsoft Sentinel HOT 8
- Errors in new analytic rule updates HOT 1
- Please help me this parser of Symantec logs HOT 4
- ????????? HOT 11
- Sentinel logic-app adding comments containing a HTML table has excessive newlines HOT 6
- Threat Intelligence Solution missing the data connector - Premium Microsoft Defender Threat Intelligence HOT 2
- Improve the Microsoft Entra ID solution workbooks HOT 1
- Sentinel Central Workbook in correctly counting incidents HOT 4
- ASIM/Deploy ASIM - Deploy to Azure templates failing (specifically Registry Event) HOT 4
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from azure-sentinel.