We are collecting Syslog and Windows Event log information in Azure Log Analytics.
Also we're using the Splunk Addon for Microsoft Cloud Service for transferring AD Audit logs to Splunk via Event Hub.
Does the Addon support the import of Syslog logs via event hub or will they not be parsed properly?
Any other best practices for transferring these type of data? The IT don't want to install any additional agents.
anything found to solve the problem?