Skip to main content
Status Page Contact Us
AARNet Home

Stream events from Microsoft Entra ID to Event Hubs

  • Updated

Prerequisites

To follow these instructions, you’ll need:

  • Azure subscription.
  • A Microsoft Entra ID tenant.
  • A user account that is a Global Administrator or Security Administrator for the Microsoft Entra ID tenant.

Configure Azure Event Hubs

To stream events from Microsoft Entra ID to Event Hubs, you need to:

  1. Create a resource group in Azure Portal.
  2. Create an Event Hubs namespace within the new resource group.
  3. Create an event hub in the new namespace.
  4. Configure Microsoft Entra ID to stream logs to the new event hub.
  5. Retrieve the connection string for your new event hub.
  6. Send the connection string and consumer group name to SOC.

Related articles