Creating custom connectors in Sentinel

The workbook has now been made public (as of the date written in public preview) I tested it when it was in Private Preview for two months.

This workbook allows you to create connectors for data that are not standardized and consequently do not appear in the Sentinel data panel, although it is possible to create anomaly and hunting rules from Azure Monitor DCRs (Data Collection Rules).

Advantages of Custom Collectors

In addition to the visual feature in Sentinel of seeing your collector and statistics, you will have integration with external APIs.

This integration will allow you to simply capture data from external sources such as third-party PaaS and SaaS products.

The Workbook

The workbook is not so simple that it can be used by a professional who does not know Azure Monitor and logging concepts (JSON, CSV, Endpoint, API URL/Authentication, etc.) well. But for those who already use DCRs today and capture data in Log Analytics, it will be simpler.

After downloading the workbook through Content, you will see that it allows you to indicate the subscription, log analytics, endpoint and visually define the characteristics of the data you want to collect:

Reference

Create Codeless Connectors with the Codeless Connector Builder (Preview) – Microsoft Community Hub