Collecting logs from Windows endpoints is a critical part of maintaining healthy and secure IT systems. However, there are many ways to collect logs, and choosing the right method can be a daunting task.

In this session, we will explore the different paths to get your data into log analytics, and provide guidance on when to use what.

We will cover Azure Monitor Agent, HTTP Data Collector API and Log ingestion API.

We will show how to Migrate from Data Collector API and custom fields-enabled tables to DCR-based custom log collection

We will also discuss best practices for log collection and manage log retention policies.

By the end of this session, attendees will have a comprehensive understanding of log collection techniques, and be equipped with the knowledge they need to choose the right path for their own log analytics journey.