I can't enable logs from Defender XDR Data Connector in Sentinel due to "The limit of 5 diagnostic settings was reached."

Hi all,

I’m trying to connect Defender XDR to Microsoft Sentinel using the native connector. When I attempt to complete the setup, I get the following error:

The limit of 5 diagnostic settings was reached. 
To create new setting 'SentinelExportSettings-log-sentinel', delete an existing one.

I understand that each resource in Azure Monitor can only have up to 5 diagnostic settings. Normally, you can review and delete these through the Azure Portal under the resource, subscription, or tenant-level diagnostic settings blades.

However, in this case the connector is a native integration, and the diagnostic settings it creates (SentinelExportSettings-*) are hidden and not directly visible. I have already checked all the usual places (Microsoft Entra ID → Diagnostic settings, Subscription → Activity log → Diagnostic settings, and resource-level diagnostic settings) and removed any unused ones, but the error still persists.

Because I have used multiple Sentinel workspaces with this tenant over time, I suspect there are legacy diagnostic settings still in place that I cannot see or manage through the portal.

Questions:

As this is a native connector, how can I get visibility into these hidden diagnostic settings and remove old ones?

Is there a supported method to reset or clear the Defender XDR → Sentinel connection so it can recreate its required diagnostic setting?

At this point, should I raise a formal Microsoft support ticket, or is there a community-supported fix?

Any official guidance or best practice for handling these hidden diagnostic settings when switching Sentinel workspaces would be greatly appreciated.

Thanks!