通过安全中心启用的反恶意软件现在需要添加诊断日志记录吗? [英] Antimalware Enabled Via Security Center Now Need to add diagnostic logging?
问题描述
我在Azure RM环境中有四个VM,并在其中使用安全中心建议启用了反恶意软件.现在,我需要打开反恶意软件日志记录.我已经阅读了所有的MSDN和帮助文件,可以找到并看到Powershell cmdlet 被引用但链接不再存在(请参见- Set-AzureServiceAntimalwareExtension ).另外,我确实发现引用的某些命令似乎不存在 在Powershell中不再存在.我希望有一种方法可以在启用了反恶意软件扩展的情况下在现有VM上启用日志记录,如果没有,我愿意使用Powershell或其他机制删除并重新启用反恶意软件,如果有必要的话,可以打开 在日志中.有人可以建议吗?顺便说一句,所有对Powershell cmdlet的引用都是2016年或更早的版本,并且https://docs.microsoft.com/zh-cn/azure/security/azure-security-antimalware上的主要文档也指向这些断开的链接(请参阅- https://github.com/Azure/azure-powershell 或 https://docs.microsoft.com/zh-CN/powershell/module/Azure/Set-AzureServiceAntimalwareExtension).
罗纳德·塔佛亚
Azure Diagnostics扩展,用于将来自Azure系统的反恶意软件事件收集到Azure存储帐户中的表中.
------------------------------------------------- ----------------------------------------------
I have four VM's in an Azure RM environment on which I enabled Antimalware using the Security Center recommendations. I now need to turn on Antimalware logging. I have read through all the MSDN and help files I can find and see that Powershell cmdlets are referenced but the links are no longer there (see - Set-AzureServiceAntimalwareExtension). In addition, some commands which I did find referenced do not appear to exist any longer in Powershell. I am hoping that there is a way to enable the logging on an existing VM with the Antimalware extension enabled, if not I am willing to remove and re-enable the Antimalware using Powershell or an other mechanism, if necessary to turn on the logging. Can anyone advise on this? BTW all the references to powershell cmdlets are 2016 or older, and the main document at https://docs.microsoft.com/en-us/azure/security/azure-security-antimalware also point to those broken links (see - https://github.com/Azure/azure-powershell or https://docs.microsoft.com/en-us/powershell/module/Azure/Set-AzureServiceAntimalwareExtension).
Ronald Tafoya
You can enable Antimalware monitoring for your Virtual Machine to have the Antimalware event log events written as they are produced to your Azure storage account. The Antimalware Service uses the Azure Diagnostics extension to collect Antimalware events from the Azure system into tables in the Azure Storage account.
-----------------------------------------------------------------------------------------------
If this answer was helpful, click "Mark as Answer" or "Up-Vote". To provide additional feedback on your forum experience, click here
这篇关于通过安全中心启用的反恶意软件现在需要添加诊断日志记录吗?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
