Creating Initial Commit adding Cyera DSPM#12980
Conversation
joshua-acklin-cyera
left a comment
joshua-acklin-cyera
left a comment
There was a problem hiding this comment.
Update query parameteters
v-shukore
added
the
New Solution
|
@microsoft-github-policy-service agree company="Cyera Inc" |
cyera responses
|
Azure Functions is added as an optional connector due to the three minute limitations associated with the CCF API poller configurations. |
|
Hi @joshua-acklin-cyera, |
…bled new 3.0.0.zi. Removed outdated zip package 3.0.3. Added latest changes to the CyeraAssets_MS_CL schema and datastream
|
Hi @v-shukore,
|
|
Hi @joshua-acklin-cyera, |
|
Some screenshots for the Azure Function connector and the CCF one showing them operating and generating events into the tables. Please note that both connector drop the events into the same tables, so any screenshots of the events in the tables are common for both connectors. 
|
@v-shukore, which files are you referring to specifically with regard to Name and ID values? |
|
Hi @davidjfriedman @joshua-acklin-cyera, In the following CCF connector files "CyraDSPM_connectordefinition, CyeraDSPM_ConnectorDefinitionFunctions.json, DCR, and pollinconfig" some attributes such as name, ID, location, kind, and title are missing. These need to be updated accordingly. Here is an example screenshot below. |
|
@v-shukore thank you for pointing to the exact location. Please clarify if it's ok to keep those name generation mechanism inside the mainTemplate.json? Thank you. |
|
Hi @kostiantyn-yevdiukhin-cyera, Additionally, please review the following points: The path in the data file is listed as "Data Connectors/CyeraDSPM_CCF/CCFAppDC.json", but the CCFAppDC.json file does not exist in this solution. Instead, include the CyeraDSPM_ConnectorDefinitionCCF.json file. Also, correct version of data file to 3.0.0. The CyeraDSPM_ConnectorDefinitionCCF.json file contains both the dataConnectorDefinition and metadata. However, the connector metadata lists Microsoft as both the author and support contact (as shown in the screenshot), whereas the SolutionMetadata file lists the support contact as Partner. Once all corrections are complete, please repackage the solution and commit the changes. |
…I versions for compatibility with Microsoft Azure Sentinel guidelines.
… DCR name for clarity; includes new data collection endpoint configuration.
…ectionToggleButton' and add sample queries for better user guidance; includes new data collection endpoint configuration.
…n file with a new Azure Functions connector; updated metadata and descriptions for improved clarity and user guidance in version 3.0.0.
…ion to new Azure Functions connector structure for improved integration with Microsoft Sentinel.
…mplate for CyeraDSPM connector to streamline configuration and enhance clarity.
|
Hi team, I believe secrets scanner Gtihub action has some issues with disk space. Can you please take a look? |
|
Hi @joshua-acklin-cyera, we are checking the issue once resolve it will update here. Thanks!! |
7 participants
Required items, please complete
Change(s):
Reason for Change(s):
Version Updated:
Testing Completed:
Checked that the validations are passing and have addressed any issues that are present:
_Note Completed all validation steps within -> https://github.com/Azure/Azure-Sentinel/blob/master/Tools/Create-Azure-Sentinel-Solution/V3/README.md and confirmed data ingested by the connector into Sentinel via manual testing.
_Note Azure Functions is added as an optional connector due to the three minute limitations associated with the CCF API poller configurations.