Customers can send Cloudmersive Virus Scan API scan logs to Azure Log Analytics. This enables customers to view threat detections easily in Azure Log Analytics.

Requirements:

• The Azure Log Analytics endpoint must be reachable on the network from your Cloudmersive Private Cloud servers
• You will need to create a Shared Access Key, and at least one Azure Log Analytics Workspace (if you do not already have one)

To enable this, follow these steps:

• Navigate to the Cloudmersive Management Portal and click on Private Cloud; select the relevant Cloudmersive Private Cloud node. We recommend starting with pre-production nodes first
• Click on Configure Node and then Advanced Configuration
• Enable Log Virus Scan Outcomes to Azure Log Analytics' and provide theWorkspace IDto your workspace in Azure, as well as theShared Access Keyfor your Azure Log Analytics workspace, and optionally theLog Type. Click onSave Changes`.
• Click on Push Configuration to push your configuration update in real time to your server.

Events should now begin flowing to Azure. Generate events by virus scanning a file with the Virus Scan API. Now check your workspace in Azure Log Analytics for events. Note that there could be an indexing delay as events are received by Azure Log Analytics prior to them appearing in the index.