You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/operator-insights/set-up-ingestion-agent.md
+5-6Lines changed: 5 additions & 6 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -30,11 +30,9 @@ From the documentation for your Data Product, obtain the:
30
30
31
31
The VM used for the ingestion agent should be set up following best practice for security. We recommend the following actions:
32
32
33
-
-**Microsoft Defender for Cloud**
34
-
- Follow all recommendations from Microsoft Defender for Cloud. You can find these recommendations in the portal by navigating to the VM, then selecting Security.
35
33
-**Networking**
36
34
- Give the VM a private IP address.
37
-
- Configure an Azure virtual network between the VM and the Data Product's input storage account. This might incur additional cost.
35
+
- Configure an Azure virtual network between the VM and the Data Product's input storage account. This might incur extra cost.
38
36
- Configure a Network Security Group (NSG) to only allow network traffic on the ports that are required to run the agent and maintain the VM.
39
37
-**Disk encryption** - ensure Azure disk encryption is enabled (this is the default when you create the VM).
40
38
-**OS version**
@@ -45,17 +43,18 @@ The VM used for the ingestion agent should be set up following best practice for
45
43
- Access to the directory where the logs are stored: */var/log/az-aoi-ingestion/*.
46
44
- Access to the managed identity or certificate and private key for the service principal that you create during this procedure.
47
45
- Access to the directory for secrets that you create on the VM during this procedure.
48
-
46
+
47
+
When using an Azure VM, also follow all recommendations from **Microsoft Defender for Cloud**. You can find these recommendations in the portal by navigating to the VM, then selecting Security.
49
48
50
49
## Download the RPM for the agent
51
50
52
51
Download the RPM for the ingestion agent using the details you received as part of the [Azure Operator Insights onboarding process](overview.md#how-do-i-get-access-to-azure-operator-insights) or from [https://go.microsoft.com/fwlink/?linkid=2260508](https://go.microsoft.com/fwlink/?linkid=2260508).
53
52
54
-
Links to the current and previous releases of the agents are available below the heading of each [release note](ingestion-agent-release-notes.md). If you're looking for an agent version that's more than 6 months old, check out the [release notes archive](ingestion-agent-release-notes-archive.md).
53
+
Links to the current and previous releases of the agents are available below the heading of each [release note](ingestion-agent-release-notes.md). If you're looking for an agent version that's more than six months old, check out the [release notes archive](ingestion-agent-release-notes-archive.md).
55
54
56
55
### Verify the authenticity of the ingestion agent RPM (optional)
57
56
58
-
Before you install the RPM, you can verify the signature of the RPM with the [Microsoft public key file](https://packages.microsoft.com/keys/microsoft.asc) to ensure it has not been corrupted or tampered with.
57
+
Before you install the RPM, you can verify the signature of the RPM with the [Microsoft public key file](https://packages.microsoft.com/keys/microsoft.asc) to ensure it hasn't been corrupted or tampered with.
0 commit comments