Merge pull request #235401 from cwatson-cat/4-21-23-dc-fix-lnks5

Sentinel auto-gen data connectors - fx lnks abs 5

Author: v-shils

articles/sentinel/data-connectors/ai-vectra-stream.md

@@ -92,7 +92,7 @@ Install the Linux agent on sperate Linux instance.
 
 2. Configure the logs to be collected
 
-Follow the configuration steps below to get Vectra Stream metadata into Microsoft Sentinel. The Log Analytics agent is leveraged to send custom JSON into Azure Monitor, enabling the storage of the metadata into a custom table. For more information, refer to the [Azure Monitor Documentation](https://learn.microsoft.com/azure/azure-monitor/agents/data-sources-json).
+Follow the configuration steps below to get Vectra Stream metadata into Microsoft Sentinel. The Log Analytics agent is leveraged to send custom JSON into Azure Monitor, enabling the storage of the metadata into a custom table. For more information, refer to the [Azure Monitor Documentation](/azure/azure-monitor/agents/data-sources-json).
 1. Download config file for the log analytics agent: VectraStream.conf (located in the Connector folder within the Vectra solution: https://aka.ms/sentinel-aivectrastream-conf).
 2. Login to the server where you have installed Azure Log Analytics agent.
 3. Copy VectraStream.conf to the /etc/opt/microsoft/omsagent/**workspace_id**/conf/omsagent.d/ folder.

articles/sentinel/data-connectors/automated-logic-webctrl.md

@@ -37,7 +37,7 @@ Event
 
 1. Install and onboard the Microsoft agent for Windows.
 
-Learn about [agent setup](https://learn.microsoft.com/services-hub/health/mma-setup) and [windows events onboarding](https://learn.microsoft.com/azure/azure-monitor/agents/data-sources-windows-events). 
+Learn about [agent setup](/services-hub/health/mma-setup) and [windows events onboarding](/azure/azure-monitor/agents/data-sources-windows-events). 
 
  You can skip this step if you have already installed the Microsoft agent for Windows
 

articles/sentinel/data-connectors/cisco-asa-ftd-via-ama.md

@@ -39,7 +39,7 @@ CommonSecurityLog
 
 To integrate with Cisco ASA/FTD via AMA (Preview) make sure you have: 
 
-- ****: To collect data from non-Azure VMs, they must have Azure Arc installed and enabled. [Learn more](https://learn.microsoft.com/azure/azure-monitor/agents/azure-monitor-agent-install?tabs=ARMAgentPowerShell,PowerShellWindows,PowerShellWindowsArc,CLIWindows,CLIWindowsArc)
+- ****: To collect data from non-Azure VMs, they must have Azure Arc installed and enabled. [Learn more](/azure/azure-monitor/agents/azure-monitor-agent-install?tabs=ARMAgentPowerShell,PowerShellWindows,PowerShellWindowsArc,CLIWindows,CLIWindowsArc)
 
 
 ## Vendor installation instructions

articles/sentinel/data-connectors/cisco-meraki.md

@@ -65,7 +65,7 @@ Typically, you should install the agent on a different computer from the one on
 
 2. Configure the logs to be collected
 
-Follow the configuration steps below to get Cisco Meraki device logs into Microsoft Sentinel. Refer to the [Azure Monitor Documentation](https://learn.microsoft.com/azure/azure-monitor/agents/data-sources-json) for more details on these steps.
+Follow the configuration steps below to get Cisco Meraki device logs into Microsoft Sentinel. Refer to the [Azure Monitor Documentation](/azure/azure-monitor/agents/data-sources-json) for more details on these steps.
  For Cisco Meraki logs, we have issues while parsing the data by OMS agent data using default settings. 
 So we advice to capture the logs into custom table **meraki_CL** using below instructions. 
 1. Login to the server where you have installed OMS agent.

articles/sentinel/data-connectors/cloudflare-using-azure-function.md

@@ -37,7 +37,7 @@ Cloudflare_CL
 To integrate with Cloudflare (Preview) (using Azure Functions) make sure you have: 
 
 - **Microsoft.Web/sites permissions**: Read and write permissions to Azure Functions to create a Function App is required. [See the documentation to learn more about Azure Functions](/azure/azure-functions).
-- **Azure Blob Storage connection string and container name**: Azure Blob Storage connection string and container name where the logs are pushed to by Cloudflare Logpush. [See the documentation to learn more about creating Azure Blob Storage container.](https://learn.microsoft.com/azure/storage/blobs/storage-quickstart-blobs-portal)
+- **Azure Blob Storage connection string and container name**: Azure Blob Storage connection string and container name where the logs are pushed to by Cloudflare Logpush. [See the documentation to learn more about creating Azure Blob Storage container.](/azure/storage/blobs/storage-quickstart-blobs-portal)
 
 
 ## Vendor installation instructions

articles/sentinel/data-connectors/cohesity-using-azure-function.md

@@ -52,7 +52,7 @@ To integrate with Cohesity (using Azure Functions) make sure you have:
 **STEP 1 - Get a Cohesity DataHawk API key (see troubleshooting [instruction 1](https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/CohesitySecurity/Data%20Connectors/Helios2Sentinel/IncidentProducer))**
 
 
-**STEP 2 - Register Azure app ([link](https://portal.azure.com/#view/Microsoft_AAD_IAM/ActiveDirectoryMenuBlade/~/RegisteredApps)) and save Application (client) ID, Directory (tenant) ID, and Secret Value ([instructions](https://learn.microsoft.com/azure/healthcare-apis/register-application)). Grant it Azure Storage (user_impersonation) permission. Also, assign the 'Microsoft Sentinel Contributor' role to the application in the appropriate subscription.**
+**STEP 2 - Register Azure app ([link](https://portal.azure.com/#view/Microsoft_AAD_IAM/ActiveDirectoryMenuBlade/~/RegisteredApps)) and save Application (client) ID, Directory (tenant) ID, and Secret Value ([instructions](/azure/healthcare-apis/register-application)). Grant it Azure Storage (user_impersonation) permission. Also, assign the 'Microsoft Sentinel Contributor' role to the application in the appropriate subscription.**
 
 
 **STEP 3 - Deploy the connector and the associated Azure Functions**.

articles/sentinel/data-connectors/corelight.md

@@ -50,7 +50,7 @@ Install the agent on the Server where the Corelight logs are generated.
 
 2. Configure the logs to be collected
 
-Follow the configuration steps below to get Corelight logs into Microsoft Sentinel. This configuration enriches events generated by Corelight module to provide visibility on log source information for Corelight logs. Refer to the [Azure Monitor Documentation](https://learn.microsoft.com/azure/azure-monitor/agents/data-sources-json) for more details on these steps.
+Follow the configuration steps below to get Corelight logs into Microsoft Sentinel. This configuration enriches events generated by Corelight module to provide visibility on log source information for Corelight logs. Refer to the [Azure Monitor Documentation](/azure/azure-monitor/agents/data-sources-json) for more details on these steps.
 1. Download config file: [corelight.conf](https://aka.ms/sentinel-Corelight-conf/).
 2. Login to the server where you have installed Azure Log Analytics agent.
 3. Copy corelight.conf to the /etc/opt/microsoft/omsagent/**workspace_id**/conf/omsagent.d/ folder.

articles/sentinel/data-connectors/darktrace-connector-for-microsoft-sentinel-rest-api.md

@@ -104,7 +104,7 @@ darktrace_model_alerts_CL
 To integrate with Darktrace Connector for Microsoft Sentinel REST API make sure you have: 
 
 - **Darktrace Prerequisites**: To use this Data Connector a Darktrace master running v5.2+ is required.
- Data is sent to the [Azure Monitor HTTP Data Collector API](https://learn.microsoft.com/azure/azure-monitor/logs/data-collector-api) over HTTPs from Darktrace masters, therefore outbound connectivity from the Darktrace master to Microsoft Sentinel REST API is required.
+ Data is sent to the [Azure Monitor HTTP Data Collector API](/azure/azure-monitor/logs/data-collector-api) over HTTPs from Darktrace masters, therefore outbound connectivity from the Darktrace master to Microsoft Sentinel REST API is required.
 - **Filter Darktrace Data**: During configuration it is possible to set up additional filtering on the Darktrace System Configuration page to constrain the amount or types of data sent.
 - **Try the Darktrace Sentinel Solution**: You can get the most out of this connector by installing the Darktrace Solution for Microsoft Sentinel. This will provide workbooks to visualise alert data and analytics rules to automatically create alerts and incidents from Darktrace Model Breaches and AI Analyst incidents.
 

articles/sentinel/data-connectors/flare.md

@@ -47,7 +47,7 @@ As an organization administrator, authenticate on [Flare](https://app.flare.syst
 
 
 Click on 'Create a new alert channel' and select 'Microsoft Sentinel'. Enter your Shared Key And WorkspaceID. Save the Alert Channel. 
- For more help and details, see our [Azure configuration documentation](https://learn.microsoft.com/azure/sentinel/connect-data-sources).
+ For more help and details, see our [Azure configuration documentation](/azure/sentinel/connect-data-sources).
 
 
    {0}

articles/sentinel/data-connectors/juniper-idp.md

@@ -52,7 +52,7 @@ Install the agent on the Server.
 
 2. Configure the logs to be collected
 
-Follow the configuration steps below to get Juniper IDP logs into Microsoft Sentinel. This configuration enriches events generated by Juniper IDP module to provide visibility on log source information for Juniper IDP logs. Refer to the [Azure Monitor Documentation](https://learn.microsoft.com/azure/azure-monitor/agents/data-sources-json) for more details on these steps.
+Follow the configuration steps below to get Juniper IDP logs into Microsoft Sentinel. This configuration enriches events generated by Juniper IDP module to provide visibility on log source information for Juniper IDP logs. Refer to the [Azure Monitor Documentation](/azure/azure-monitor/agents/data-sources-json) for more details on these steps.
 1. Download config file [juniper_idp.conf](https://aka.ms/sentinel-JuniperIDP-conf).
 2. Login to the server where you have installed Azure Log Analytics agent.
 3. Copy juniper_idp.conf to the /etc/opt/microsoft/omsagent/**workspace_id**/conf/omsagent.d/ folder.