Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
248
Views
0
Helpful
3
Replies

Soar integration with Cisco Cloud email Security

Vishal6
Level 1
Level 1

‎12-19-2024 02:45 AM

Hi All,

Can i integrate Logrhythm SOAR with Cisco CES ? If yes please share any relevant document if possible

Labels:
0 Helpful
3 Replies 3

iakdag
Cisco Employee
Cisco Employee

‎12-19-2024 01:42 PM

Hi Vishal6,

Could you kindly elaborate on the need?

Apart from that, you may leverage the API guide provided below.

https://docs.ces.cisco.com/docs/api

Kind regards,

 

0 Helpful

Vishal6
Level 1
Level 1
In response to iakdag

‎12-19-2024 07:41 PM

Having Logrhythm soar and wants to integrate with Cisco Ces. As per below link we can integrate to multiple security products but there Ces not mentioned 

https://www.cisco.com/c/en/us/products/security/technical-alliance-partners/logrhythm.html

0 Helpful

Ken Stieers
VIP
VIP
In response to Vishal6

‎12-19-2024 08:20 PM

Step 1 is getting logs to the SEIM. I couldn't get Logrythm to be clear as to which logs they had good parsers for.

Next is figuring out what "integrate SOAR with CES" actually means for you... there isn't a defined set of capabilities in Logrythm to take specific actions in CES, no "easy setup and now you can right-click/block from the log explorer."

You have to build what you need in Logrhythm based on the available API docs previously shared.


0 Helpful
Customers Also Viewed These Support Documents