Introduction
You can configure event log integrations with your observability tool of choice via our custom webhook option. You can select the events you would like to receive and create multiple integration configurations to support different reporting and monitoring needs.
Integrating Custom Webhooks
- Open the Beyond Identity Admin console and select Integrations from the left menu.
- From the Integrations page, click the SIEM tab.
- Click Add SIEM Integration and scroll down to select the “Custom Webhook.”
- Click Save Changes.
- Complete the following information on the Edit Generic Webhook Integration dialog.
- Enter a name for your integration.
- Once you’ve configured a destination for these events, please enter the URL destination provided by your observability vendor.
-
Select an authentication method:
- No Auth - Requires no additional credentials
- Basic - Provide a username and password
- Bearer - Provide a bearer token
- Under Events, choose Select all or select individual events to include in the integration. Check the box underneath to receive all new events going forward.
- Under Threat Signals, choose Select all to include all threat events. Check the box underneath to receive all new threat events going forward.
- Test your configuration before saving it by clicking Test Configuration.
- Click Save Changes.
Comments
0 comments
Please sign in to leave a comment.