Examice

Exam AZ-400 All QuestionsBrowse all questions from this exam

Go to Exam

Question 253

You have an Azure subscription that contains a storage account and 20 virtual machines.

You plan to use LogRhythm for aggregation and analysis of the virtual machine logs.

You need to configure AzLog to export the logs and push them to the storage account.

In which format should you export the logs?

JSON

EVTX

EVT

binary

Correct Answer: A

To configure AzLog to export logs and push them to a storage account for use with LogRhythm, the logs should be exported in JSON format. JSON is the most compatible and widely used format for log aggregation and analysis in modern SIEM systems, including LogRhythm. JSON allows for easy parsing and mapping of fields to the LogRhythm Schema Dictionary and Guide, ensuring efficient and effective log analysis.

Discussion

mrg998Option: A

The LogRhythm Open Collector brings modern logs, usually in JSON format, from cloud log sources, flat file, or other formats, into the LogRhythm SIEM. It is designed for easy mapping of JSON fields to the LogRhythm Schema Dictionary and Guide.

ozbonnyOption: A

A. JSON

warchoonOption: A

correct Reference: https://docs.logrhythm.com/docs/OCbeats/logrhythm-open-collector

hajurbauOption: A

correct The LogRhythm Open Collector brings modern logs, usually in JSON format, from cloud log sources, flat file, or other formats, into the LogRhythm SIEM.

vsvaidOption: A

Agree with answer

memoor

Given Answer is Correct