Forum Discussion
Possible data sources
Hey there, The product is amazing, very promising with great features, looking forward to setup entire SIEM on it. Our company has zero on prem solution, it’s a cloud native organisation. It would be...
Same exact environment and interest!
What we actually have done is the following:
integrated Salesforce with CloudApp security portal, that collects and correlate SF logs,
integrated CloudApp security with Sentinel. Coz, SF has rate limiting, and CloudApp security integration takes care of that. This flow somehow solved Salesforce part.
However, AWS is a different story, you have options for different SaaS logs to analyze, you might need to connect it to Sentinel directly (VPC logs, KMS logs, etc).
