Sumo Logic is a cloud-based log management and analytics service that leverages machine-generated big data to deliver real-time IT insights.
This document provides information about the Sumo Logic connector, which facilitates automated interactions with a Sumo Logic server using FortiSOAR™ playbooks. Add the ProtectWise connector as a step in FortiSOAR™ playbooks and perform automated operations, such as creating a search job on Sumo Logic, and retrieving the current status of a search job.
Connector Version: 1.0.0
Authored By: Fortinet
Certified: No
All connectors provided by FortiSOAR™ are delivered using a FortiSOAR™ repository. Therefore, you must set up your FortiSOAR™ repository and use the yum
command to install connectors:
yum install cyops-connector-sumo-logic
For the detailed procedure to install a connector, click here.
For the procedure to configure a connector, click here.
The following automated operations can be included in playbooks and you can also use the annotations to access operations from FortiSOAR™ release 4.10.0 onwards:
Function | Description | Annotation and Category |
---|---|---|
Create Search Job | Creates a search job on Sumo Logic. | create_search_job Investigation |
Get Search Job Status | Retrieves the current status of a search job. | get_status Investigation |
Get Messages Founded by Search Job | Retrieves messages founded by a search job. | create_search_job Investigation |
Get Records Founded by Search Job | Retrieves records founded by a search job. | create_search_job Investigation |
Delete Search Job | Deletes a search job from Sumo Logic based on the input parameters you have specified | create_search_job Investigation |
The Sample - Sumo Logic - 1.0.0
playbook collection comes bundled with the Sumo Logic connector. This playbook contains steps using which you can perform all supported actions. You can see the bundled playbooks in the Automation > Playbooks section in FortiSOAR™ after importing the Sumo Logic connector.
Note: If you are planning to use any of the sample playbooks in your environment, ensure that you clone those playbooks and move them to a different collection, since the sample playbook collection gets deleted during connector upgrade and delete.
Sumo Logic is a cloud-based log management and analytics service that leverages machine-generated big data to deliver real-time IT insights.
This document provides information about the Sumo Logic connector, which facilitates automated interactions with a Sumo Logic server using FortiSOAR™ playbooks. Add the ProtectWise connector as a step in FortiSOAR™ playbooks and perform automated operations, such as creating a search job on Sumo Logic, and retrieving the current status of a search job.
Connector Version: 1.0.0
Authored By: Fortinet
Certified: No
All connectors provided by FortiSOAR™ are delivered using a FortiSOAR™ repository. Therefore, you must set up your FortiSOAR™ repository and use the yum
command to install connectors:
yum install cyops-connector-sumo-logic
For the detailed procedure to install a connector, click here.
For the procedure to configure a connector, click here.
The following automated operations can be included in playbooks and you can also use the annotations to access operations from FortiSOAR™ release 4.10.0 onwards:
Function | Description | Annotation and Category |
---|---|---|
Create Search Job | Creates a search job on Sumo Logic. | create_search_job Investigation |
Get Search Job Status | Retrieves the current status of a search job. | get_status Investigation |
Get Messages Founded by Search Job | Retrieves messages founded by a search job. | create_search_job Investigation |
Get Records Founded by Search Job | Retrieves records founded by a search job. | create_search_job Investigation |
Delete Search Job | Deletes a search job from Sumo Logic based on the input parameters you have specified | create_search_job Investigation |
The Sample - Sumo Logic - 1.0.0
playbook collection comes bundled with the Sumo Logic connector. This playbook contains steps using which you can perform all supported actions. You can see the bundled playbooks in the Automation > Playbooks section in FortiSOAR™ after importing the Sumo Logic connector.
Note: If you are planning to use any of the sample playbooks in your environment, ensure that you clone those playbooks and move them to a different collection, since the sample playbook collection gets deleted during connector upgrade and delete.