Merge pull request #218558 from limwainstein/cef-whats-new

Removing what's new for CEF

Author: prmerger-automator[bot]

articles/sentinel/whats-new.md

@@ -31,7 +31,6 @@ If you're looking for items older than six months, you'll find them in the [Arch
 - [Microsoft 365 Defender now integrates Azure Active Directory Identity Protection (AADIP)](#microsoft-365-defender-now-integrates-azure-active-directory-identity-protection-aadip)
 - [Out of the box anomaly detection on the SAP audit log (Preview)](#out-of-the-box-anomaly-detection-on-the-sap-audit-log-preview)
 - [IoT device entity page (Preview)](#iot-device-entity-page-preview)
-- [Common Event Format (CEF) via AMA](#common-event-format-cef-via-ama-preview)
 
 ### Account enrichment fields removed from Azure AD Identity Protection connector
 
@@ -121,18 +120,6 @@ The new [IoT device entity page](entity-pages.md) is designed to help the SOC in
 
 Learn more about [investigating IoT device entities in Microsoft Sentinel](iot-advanced-threat-monitoring.md).
 
-### Common Event Format (CEF) via AMA (Preview)
-
-The [Common Event Format (CEF) via AMA](connect-cef-ama.md) connector allows you to quickly filter and upload logs over CEF from multiple on-premises appliances to Microsoft Sentinel via the Azure Monitor Agent (AMA). 
-
-The AMA supports Data Collection Rules (DCRs), which you can use to filter the logs before ingestion, for quicker upload, efficient analysis, and querying.
-
-Here are some benefits of using AMA for CEF log collection:
-
-- AMA is faster compared to the existing Log Analytics Agent (MMA/OMS). 
-- AMA provides centralized configuration using Data Collection Rules (DCRs), and also supports multiple DCRs.
-- AMA is Syslog RFC compliant, a faster and a more resilient and reliant agent, more secure with lower footprint on the installed machine.
-
 ## September 2022
 
 - [Create automation rule conditions based on custom details (Preview)](#create-automation-rule-conditions-based-on-custom-details-preview)