# Azure Sentinel

Microsoft Sentinel is a cloud-native security information and event manager (SIEM) platform that uses built-in AI to help analyse large volumes of data across an enterprise.

1. Get API key from - [https://console.clouddefenseai.com/profile-management ](<https://console.clouddefenseai.com/profile-management >)
2. Now in your Azure Sentinel, we will use the Microsoft Management Agent (MMA) feature.&#x20;
3. Let’s configure HTTP Data Source for showing a list of vulnerabilities in any specific application
4. &#x20;Use this API endpoint with Application ID in end, to get list of all vulnerabilities, <https://console.clouddefenseai.com/api-v2/integrations/application/584174528>, you also need to send 1 header with key “apikey” and you can obtain your api key from - [https://console.clouddefenseai.com/profile-management ](<https://console.clouddefenseai.com/profile-management >)
5. Now, you can configure your parser / schema within Azure Sentinel, to access different key / values from json.

**For more detailed information visit this  -** <https://techcommunity.microsoft.com/t5/microsoft-sentinel-blog/sending-rest-api-data-to-azure-sentinel/ba-p/558896>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.clouddefenseai.com/integration/siem/azure-sentinel.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.