updating page for AMA agent

batamig · batamig · commit badc9ba347c6 · 2024-06-09T11:37:20.000+03:00
diff --git a/articles/sentinel/sap/collect-sap-hana-audit-logs.md b/articles/sentinel/sap/collect-sap-hana-audit-logs.md
@@ -1,10 +1,10 @@
 ---
 title: Collect SAP HANA audit logs in Microsoft Sentinel | Microsoft Docs
 description: This article explains how to collect audit logs from your SAP HANA database.
-author: yelevin
-ms.author: yelevin
+author: batamig
+ms.author: bagol
 ms.topic: how-to
-ms.date: 05/24/2023
+ms.date: 06/09/2024
 ---
 
 # Collect SAP HANA audit logs in Microsoft Sentinel
@@ -14,7 +14,7 @@ This article explains how to collect audit logs from your SAP HANA database.
 > [!IMPORTANT]
 > Microsoft Sentinel SAP HANA support is currently in PREVIEW. The [Azure Preview Supplemental Terms](https://azure.microsoft.com/support/legal/preview-supplemental-terms/) include additional legal terms that apply to Azure features that are in beta, preview, or otherwise not yet released into general availability.
 
-If you have SAP HANA database audit logs configured with Syslog, you'll also need to configure your Log Analytics agent to collect the Syslog files.
+If you have SAP HANA database audit logs configured with Syslog, you'll also need to configure your AMA agent or Log Analytics agent (legacy) to collect the Syslog files.
 
 ## Collect SAP HANA audit logs
 
@@ -25,24 +25,20 @@ If you have SAP HANA database audit logs configured with Syslog, you'll also nee
 
 1. Check your operating system Syslog files for any relevant HANA database events.
 
-1. Install and configure a Log Analytics agent on your machine:
+1. Sign into your HANA database operating system as a user with sudo privileges.
 
-    1. Sign in to your HANA database operating system as a user with sudo privileges.  
+1. Install an agent on your machine and confirm that your machine is connected. For more information, see:
 
-    1. In the Azure portal, go to your Log Analytics workspace. On the left pane, under **Settings**, select **Agents management** > **Linux servers**.  
+    - [Azure Monitor Agent](/azure/azure-monitor/agents/azure-monitor-agent-manage?tabs=azure-portal)
+    - [Log Analytics Agent](../../azure-monitor/agents/agent-linux.md) (legacy)
 
-    1. Under **Download and onboard agent for Linux**, copy the code that's displayed in the box to your terminal, and then run the script.
+1. Configure your agent to collect Syslog data. For more information, see:
 
-    The Log Analytics agent is installed on your machine and connected to your workspace. For more information, see [Install Log Analytics agent on Linux computers](../../azure-monitor/agents/agent-linux.md) and [OMS Agent for Linux](https://github.com/microsoft/OMS-Agent-for-Linux) on the Microsoft GitHub repository.
-
-1. Refresh the **Agents Management > Linux servers** tab to confirm that you have **1 Linux computers connected**.
-
-1. On the left pane, under **Settings**, select **Agents configuration**, and then select the **Syslog** tab.
-
-1. Select **Add facility** to add the facilities you want to collect. 
+    - [Azure Monitor Agent](/azure/azure-monitor/agents/data-collection-syslog)
+    - [Log Analytics Agent](/azure/azure-monitor/agents/data-sources-syslog) (legacy)
 
     > [!TIP]
-    > Because the facilities where HANA database events are saved can change between different distributions, we recommend that you add all facilities, check them against your Syslog logs, and then remove any that aren't relevant.
+    > Because the facilities where HANA database events are saved can change between different distributions, we recommend that you add all facilities. Check them against your Syslog logs, and then remove any that aren't relevant.
     >
 
 1. In Microsoft Sentinel, check to confirm that HANA database events are now shown in the ingested logs.
