Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
As part of the Deployment guide for Microsoft Sentinel, this procedure walks you through enabling Microsoft Sentinel, enabling the health and audit feature, and enabling the solutions and content you've identified according to your organization's needs.
Enable features and content
Use the following steps to enable Microsoft Sentinel features and content for your deployment.
| Step | Description |
|---|---|
| 1. Enable the Microsoft Sentinel service | In the Azure portal, enable Microsoft Sentinel to run on the Log Analytics workspace your organization planned as part of your workspace design. To onboard to Microsoft Sentinel by using the API, see the latest supported version of Sentinel Onboarding States. |
| 2. Enable health and audit | Enable health and audit at this stage of your deployment to make sure that the service's many moving parts are always functioning as intended and that the service isn't being manipulated by unauthorized actions. Learn more about the health and audit feature. |
| 3. Enable solutions and content | When you planned your deployment, you identified which data sources you need to ingest into Microsoft Sentinel. Now, you want to enable the relevant solutions and content so that the data you need can start flowing into Microsoft Sentinel. |
Next step: Configure content
After you enable Microsoft Sentinel, its health and audit feature, and the required content, proceed to configure the content for your environment.