Forum Discussion
Solved
Using Sentinel API to connect Zscaler Cloud NSS
Hi guys, I'm looking into connecting my Zscaler environment logs to Sentinel via Zscaler Cloud NSS. Which will stream the logs direct to Sentinel without a VM. Zscaler Cloud NSS is asking Senti...
There is an API, Logs Ingestion API in Azure Monitor - Azure Monitor | Microsoft Learn
Probably this will help.
Hi mikhailf
Cheers for the response.
I've contacted Zscaler and they told me they support Sentinel through API URL.
It's in the preview stage, thus no reference documentation exists at this time.
So, I thought surely someone has done some integration with this.
Zscaler side seems to ask very few things on its setup page.
- API URL
- HTTP HEADERS (key & value pair)
And other not so related things such as rate limit, log type, log format and log filters.
Syslog would def. be an option, but trying to minimise infrastructure to maintain.
Cheers for the response.
I've contacted Zscaler and they told me they support Sentinel through API URL.
It's in the preview stage, thus no reference documentation exists at this time.
So, I thought surely someone has done some integration with this.
Zscaler side seems to ask very few things on its setup page.
- API URL
- HTTP HEADERS (key & value pair)
And other not so related things such as rate limit, log type, log format and log filters.
Syslog would def. be an option, but trying to minimise infrastructure to maintain.
There is an API, Logs Ingestion API in Azure Monitor - Azure Monitor | Microsoft Learn
Probably this will help.