dcr fix

Author: MartinPankraz

Solutions/SAP S4 Cloud Public Edition/Data Connectors/SAPS4PublicPollerConnector/SAPS4Public_DCR.json

@@ -99,7 +99,7 @@
           "destinations": [
             "clv2ws1"
           ],
-          "transformKql": "source\n| extend TimeGenerated = now(), AgentId = \"S4-Public-Cloud\", ClientID = slgmand, Computer = terminal_name, Email = email_adress, MessageClass = eventID, MessageText = rsau_text, SystemID = sid, UpdatedOn = todatetime(log_tstmp), TransactionCode = slgtc, User = UserID, Variable1 = param_a, Variable2 = param_b, Variable3 = param_c, Variable4 = param_d\n| project TimeGenerated, AgentId, ClientID, Computer, Email, MessageClass, MessageText, SystemID, UpdatedOn, TransactionCode, User, Variable1, Variable2, Variable3, Variable4",
+          "transformKql": "source\n| extend TimeGenerated = now(), AgentId = \"S4-Public-Cloud\", ClientId = slgmand, Computer = terminal_name, Email = email_adress, MessageClass = eventID, MessageText = rsau_text, SystemId = sid, UpdatedOn = todatetime(log_tstmp), TransactionCode = slgtc, User = UserID, Variable1 = param_a, Variable2 = param_b, Variable3 = param_c, Variable4 = param_d, AbapProgramName = slgrepna\n| project TimeGenerated, AgentId, ClientId, Computer, Email, MessageClass, MessageText, SystemId, UpdatedOn, TransactionCode, User, Variable1, Variable2, Variable3, Variable4, AbapProgramName",
           "outputStream": "Microsoft-ABAPAuditLog"
         }
       ]

Solutions/SAP S4 Cloud Public Edition/Data Connectors/SAPS4PublicPollerConnector/SAPS4Public_connectorDefinition.json

@@ -10,7 +10,7 @@
         "title": "SAP S/4HANA Cloud Public Edition",
         "logo": "SapLogo.svg",
         "publisher": "SAP",
-        "descriptionMarkdown": "The SAP S/4HANA Cloud Public Edition data connector enables ingestion of SAP's security audit log into the Microsoft Sentinel Solution for SAP, supporting cross-correlation, alerting, and threat hunting. Looking for alternative authentication mechanisms? See [here](https://github.com/Azure-Samples/Sentinel-For-SAP-Community/tree/main/integration-artifacts).",
+        "descriptionMarkdown": "The SAP S/4HANA Cloud Public Edition (GROW with SAP) data connector enables ingestion of SAP's security audit log into the Microsoft Sentinel Solution for SAP, supporting cross-correlation, alerting, and threat hunting. Looking for alternative authentication mechanisms? See [here](https://github.com/Azure-Samples/Sentinel-For-SAP-Community/tree/main/integration-artifacts).",
         "graphQueriesTableName": "ABAPAuditLog",
         "graphQueries": [
           {

Solutions/SAP S4 Cloud Public Edition/Data/Solution_SAPS4Public.json

@@ -17,7 +17,7 @@
     "Watchlists": [],
     "WatchlistDescription": [],
     "BasePath": "C:\\GitHub\\Azure-Sentinel\\Solutions\\SAP S4 Cloud Public Edition",
-    "Version": "3.0.1",
+    "Version": "3.0.2",
     "Metadata": "SolutionMetadata.json",
     "TemplateSpec": true,
     "Is1PConnector": false

Solutions/SAP S4 Cloud Public Edition/Package/3.0.2.zip

@@ -45,7 +45,7 @@
   },
   "variables": {
     "_solutionName": "SAP S4 Cloud Public Edition",
-    "_solutionVersion": "3.0.1",
+    "_solutionVersion": "3.0.2",
     "solutionId": "sap_jasondau.azure-sentinel-solution-s4hana-public",
     "_solutionId": "[variables('solutionId')]",
     "workspaceResourceId": "[resourceId('microsoft.OperationalInsights/Workspaces', parameters('workspace'))]",
@@ -89,7 +89,7 @@
                   "title": "SAP S/4HANA Cloud Public Edition",
                   "logo": "SapLogo.svg",
                   "publisher": "SAP",
-                  "descriptionMarkdown": "The SAP S/4HANA Cloud Public Edition data connector enables ingestion of SAP's security audit log into the Microsoft Sentinel Solution for SAP, supporting cross-correlation, alerting, and threat hunting. Looking for alternative authentication mechanisms? See [here](https://github.com/Azure-Samples/Sentinel-For-SAP-Community/tree/main/integration-artifacts).",
+                  "descriptionMarkdown": "The SAP S/4HANA Cloud Public Edition (GROW with SAP) data connector enables ingestion of SAP's security audit log into the Microsoft Sentinel Solution for SAP, supporting cross-correlation, alerting, and threat hunting. Looking for alternative authentication mechanisms? See [here](https://github.com/Azure-Samples/Sentinel-For-SAP-Community/tree/main/integration-artifacts).",
                   "graphQueriesTableName": "ABAPAuditLog",
                   "graphQueries": [
                     {
@@ -360,7 +360,7 @@
                     "destinations": [
                       "clv2ws1"
                     ],
-                    "transformKql": "source\n| extend TimeGenerated = now(), AgentId = \"S4-Public-Cloud\", ClientID = slgmand, Computer = terminal_name, Email = email_adress, MessageClass = eventID, MessageText = rsau_text, SystemID = sid, UpdatedOn = todatetime(log_tstmp), TransactionCode = slgtc, User = UserID, Variable1 = param_a, Variable2 = param_b, Variable3 = param_c, Variable4 = param_d\n| project TimeGenerated, AgentId, ClientID, Computer, Email, MessageClass, MessageText, SystemID, UpdatedOn, TransactionCode, User, Variable1, Variable2, Variable3, Variable4",
+                    "transformKql": "source\n| extend TimeGenerated = now(), AgentId = \"S4-Public-Cloud\", ClientId = slgmand, Computer = terminal_name, Email = email_adress, MessageClass = eventID, MessageText = rsau_text, SystemId = sid, UpdatedOn = todatetime(log_tstmp), TransactionCode = slgtc, User = UserID, Variable1 = param_a, Variable2 = param_b, Variable3 = param_c, Variable4 = param_d, AbapProgramName = slgrepna\n| project TimeGenerated, AgentId, ClientId, Computer, Email, MessageClass, MessageText, SystemId, UpdatedOn, TransactionCode, User, Variable1, Variable2, Variable3, Variable4, AbapProgramName",
                     "outputStream": "Microsoft-ABAPAuditLog"
                   }
                 ]
@@ -389,7 +389,7 @@
           "title": "SAP S/4HANA Cloud Public Edition",
           "logo": "SapLogo.svg",
           "publisher": "SAP",
-          "descriptionMarkdown": "The SAP S/4HANA Cloud Public Edition data connector enables ingestion of SAP's security audit log into the Microsoft Sentinel Solution for SAP, supporting cross-correlation, alerting, and threat hunting. Looking for alternative authentication mechanisms? See [here](https://github.com/Azure-Samples/Sentinel-For-SAP-Community/tree/main/integration-artifacts).",
+          "descriptionMarkdown": "The SAP S/4HANA Cloud Public Edition (GROW with SAP) data connector enables ingestion of SAP's security audit log into the Microsoft Sentinel Solution for SAP, supporting cross-correlation, alerting, and threat hunting. Looking for alternative authentication mechanisms? See [here](https://github.com/Azure-Samples/Sentinel-For-SAP-Community/tree/main/integration-artifacts).",
           "graphQueriesTableName": "ABAPAuditLog",
           "graphQueries": [
             {
@@ -707,7 +707,7 @@
       "apiVersion": "2023-04-01-preview",
       "location": "[parameters('workspace-location')]",
       "properties": {
-        "version": "3.0.1",
+        "version": "3.0.2",
         "kind": "Solution",
         "contentSchemaVersion": "3.0.0",
         "displayName": "SAP S4 Cloud Public Edition",

Solutions/SAP S4 Cloud Public Edition/Package/mainTemplate.json

@@ -1,4 +1,5 @@
 | **Version** | **Date Modified (DD-MM-YYYY)** | **Change History**                                                  |
 |-------------|--------------------------------|---------------------------------------------------------------------|
+| 3.0.2       | 30-10-2025                     |DCR transform updates|
 | 3.0.1       | 16-10-2025                     |DCR transform updates|
 | 3.0.0       | 06-10-2025                     |Initial release|