-
Notifications
You must be signed in to change notification settings - Fork 228
Trust-Login-C2C-(Source) #4835
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Merged
Merged
Trust-Login-C2C-(Source) #4835
Changes from all commits
Commits
Show all changes
14 commits
Select commit
Hold shift + click to select a range
00b22c7
Trust-Login-C2C-(Source)
amee-sumo 45ab345
Update index.md
amee-sumo 46b09eb
Add to the product list
jpipkin1 5073e89
Update docs/send-data/hosted-collectors/cloud-to-cloud-integration-fr…
amee-sumo f8053d7
Update docs/send-data/hosted-collectors/cloud-to-cloud-integration-fr…
amee-sumo 71a2250
Update docs/send-data/hosted-collectors/cloud-to-cloud-integration-fr…
amee-sumo 37d09ff
Update docs/send-data/hosted-collectors/cloud-to-cloud-integration-fr…
amee-sumo c81e19d
Create 2024-12-06-collection.md
amee-sumo c59a47f
Update 2024-12-06-collection.md
JV0812 defa268
Update trust-login-source.md
JV0812 495a6c4
Update docs/integrations/product-list/product-list-m-z.md
JV0812 cf04b9d
Update docs/integrations/product-list/product-list-m-z.md
JV0812 6f07fde
minor fix
JV0812 9448623
Merge branch 'Trust-Login-C2C-(Apps)' of https://github.com/SumoLogic…
JV0812 File filter
Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,14 @@ | ||
| --- | ||
| title: Trust Login C2C Source (Collection) | ||
| image: https://help.sumologic.com/img/sumo-square.png | ||
| keywords: | ||
| - collection | ||
| - trust-login | ||
| hide_table_of_contents: true | ||
| --- | ||
|
|
||
| import useBaseUrl from '@docusaurus/useBaseUrl'; | ||
|
|
||
| <a href="https://help.sumologic.com/release-notes-service/rss.xml"><img src={useBaseUrl('img/release-notes/rss-orange2.png')} alt="icon" width="50"/></a> | ||
|
|
||
| We're excited to announce the release of our new cloud-to-cloud source for Trust Login. This source helps you to collect the report logs from the Trust Login platform, and ingest them into Sumo Logic for streamlined analysis. [Learn more](/docs/send-data/hosted-collectors/cloud-to-cloud-integration-framework/trust-login-source). |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
94 changes: 94 additions & 0 deletions
94
...ta/hosted-collectors/cloud-to-cloud-integration-framework/trust-login-source.md
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,94 @@ | ||
| --- | ||
| id: trust-login-source | ||
| title: Trust Login Source | ||
| sidebar_label: Trust Login | ||
| description: This integration aims to collect the report logs from the Trust Login platform. | ||
| --- | ||
|
|
||
| import CodeBlock from '@theme/CodeBlock'; | ||
| import ExampleJSON from '/files/c2c/trust-login/example.json'; | ||
| import MyComponentSource from '!!raw-loader!/files/c2c/trust-login/example.json'; | ||
| import TerraformExample from '!!raw-loader!/files/c2c/trust-login/example.tf'; | ||
| import ForwardToSiem from '/docs/reuse/forward-to-siem.md'; | ||
| import useBaseUrl from '@docusaurus/useBaseUrl'; | ||
|
|
||
| <img src={useBaseUrl('img/send-data/trust-login-icon.png')} alt="trust-login-icon" width="50" /> | ||
|
|
||
| Trust Login is an advanced authentication platform that provides a secure and seamless login solution for both users and organizations. It improves the authentication process by focusing on trust, ease of use, and robust security. This approach ensures reliable access control while maintaining a positive user experience. | ||
|
|
||
| This source helps you to collect the report logs from the Trust Login platform, and ingest them into Sumo Logic for streamlined analysis. | ||
|
|
||
| :::important | ||
| The Trust Login documentation is not public and can only be accessed by partners or customers. | ||
| ::: | ||
|
|
||
| ## Data collected | ||
|
|
||
| | Polling Interval | Data | | ||
| | :--- | :--- | | ||
| | 5 min | Report logs | | ||
|
|
||
| ## Setup | ||
|
|
||
| ### Vendor configuration | ||
|
|
||
| The Trust Login source requires authentication with a **Bearer Token** associated with an API Token. | ||
|
|
||
| ### Source configuration | ||
|
|
||
| When you create a Trust Login source, you add it to a Hosted Collector. Before creating the source, identify the Hosted Collector you want to use or create a new Hosted Collector. For instructions, see [Configure a Hosted Collector and Source](/docs/send-data/hosted-collectors/configure-hosted-collector). | ||
|
|
||
| To configure a Trust Login Source: | ||
|
|
||
| 1. [**Classic UI**](/docs/get-started/sumo-logic-ui-classic). In the main Sumo Logic menu, select **Manage Data > Collection > Collection**. <br/>[**New UI**](/docs/get-started/sumo-logic-ui). In the Sumo Logic top menu select **Configuration**, and then under **Data Collection** select **Collection**. You can also click the **Go To...** menu at the top of the screen and select **Collection**. | ||
| 1. On the Collectors page, click **Add Source** next to a Hosted Collector. | ||
| 1. Search for and select **Trust Login**. | ||
| 1. Enter a Name for the Source. The description is optional. | ||
| 1. (Optional) For **Source Category**, enter any string to tag the output collected from the source. Category metadata is stored in a searchable field called `_sourceCategory`. | ||
| 1. **Forward to SIEM**. Check the checkbox to forward your data to [Cloud SIEM](/docs/cse/). <br/><ForwardToSiem/> | ||
| 1. (Optional) **Fields.** Click the **+Add Field** link to define the fields you want to associate, each field needs a name (key) and value. | ||
| *  A green circle with a check mark is shown when the field exists in the Fields table schema. | ||
| *  An orange triangle with an exclamation point is shown when the field doesn't exist in the Fields table schema. In this case, an option to automatically add the nonexistent fields to the Fields table schema is provided. If a field is sent to Sumo that does not exist in the Fields schema it is ignored, known as dropped. | ||
| 1. **Bearer Token**. Provide the bearer token collected from the Trust Login platform. | ||
| 1. The **Polling Interval** is set for five minutes by default, you can adjust it based on your needs. | ||
| 1. **Processing Rules**. Configure any desired filters, such as allowlist, denylist, hash, or mask, as described in [Create a Processing Rule](/docs/send-data/collection/processing-rules/create-processing-rule). | ||
| 1. When you are finished configuring the Source, click **Save**. | ||
|
|
||
| ## JSON schema | ||
|
|
||
| Sources can be configured using UTF-8 encoded JSON files with the Collector Management API. See [Use JSON to Configure Sources](/docs/send-data/use-json-configure-sources) for details. | ||
|
|
||
| | Parameter | Type | Value | Required | Description | | ||
| |:--|:--|:--|:--|:--| | ||
| | schemaRef | JSON Object | `{"type":"Trust Login"}` | Yes | Specific schema type. | | ||
| | sourceType | String | `"Universal"` | Yes | Type of Source. | | ||
| | config | JSON Object | [Configuration object](#configuration-object) | Yes | Source type specific values. | | ||
|
|
||
| ### Configuration Object | ||
|
|
||
| | Parameter | Type | Required | Default | Description | Example | | ||
| |:--|:--|:--|:--|:--|:--| | ||
| | name | String | Yes | `null` | Type a desired name of the source. The name must be unique per Collector. This value is assigned to the [metadata](/docs/search/get-started-with-search/search-basics/built-in-metadata) field `_source`. | `"mySource"` | | ||
| | description | String | No | `null` | Type a description of the source. | `"Testing Source"` | ||
| | category | String | No | `null` | Type a category of the source. This value is assigned to the [metadata](/docs/search/get-started-with-search/search-basics/built-in-metadata) field `_sourceCategory`. See [best practices](/docs/send-data/best-practices) for details. | `"mySource/test"` | ||
| | fields | JSON Object | No | `null` | JSON map of key-value fields (metadata) to apply to the collector or source. Use the boolean field _siemForward to enable forwarding to SIEM.|`{"_siemForward": false, "fieldA": "valueA"}` | | ||
| | bearerToken | String | Yes | `null` | The bearer API token created for the account in the Trust Login portal. | | | ||
| | pollingIntervalMin | Integer | Yes | 5 mins | This sets how often the source checks for new data. | | | ||
|
|
||
| ### JSON example | ||
|
|
||
| <CodeBlock language="json">{MyComponentSource}</CodeBlock> | ||
|
|
||
| <a href="/files/c2c/trust-login/example.json" target="_blank">Download example</a> | ||
|
|
||
| ### Terraform example | ||
|
|
||
| <CodeBlock language="json">{TerraformExample}</CodeBlock> | ||
|
|
||
| <a href="/files/c2c/trust-login/example.tf" target="_blank">Download example</a> | ||
|
|
||
| ## FAQ | ||
|
|
||
| :::info | ||
| Click [here](/docs/c2c/info) for more information about Cloud-to-Cloud sources. | ||
| ::: | ||
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,13 @@ | ||
| { | ||
| "api.version": "v1", | ||
| "source": { | ||
| "config": { | ||
| "name": "Trust Login", | ||
| "bearerToken": "hgvwuilvgwovghwovhiowhvo", | ||
| "pollingIntervalMin": 5 | ||
| }, | ||
| "schemaRef": { | ||
| "type": "Trust Login" | ||
| }, | ||
| "sourceType": "Universal" | ||
| }} |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,15 @@ | ||
| resource "sumologic_cloud_to_cloud_source" "trust-login-source" { | ||
| collector_id = sumologic_collector.collector.id | ||
| schema_ref = { | ||
| type = "Trust Login" | ||
| } | ||
| config = jsonencode({ | ||
| "name": "Trust Login", | ||
| "bearerToken": "hgvwuilvgwovghwovhiowhvo", | ||
| "pollingIntervalMin": 5 | ||
| }) | ||
| } | ||
| resource "sumologic_collector" "collector" { | ||
| name = "my-collector" | ||
| description = "Just testing this" | ||
| } |
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Uh oh!
There was an error while loading. Please reload this page.