cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Microsoft Sentinel Custom Data connectors

Porter76
Copper Contributor

‎Aug 10 2023 11:07 AM

‎Aug 10 2023 11:07 AM

Microsoft Sentinel Custom Data connectors

Afternoon,

 

With the recent deployment of Sentinel, I have been setting up he log ingestion for the SIEM. So far, all of the data connectors I've setup were OOTB from content hub. 

 

Now I am trying to understand how custom connectors work and the best approach to ingest logs from apps like DOMO where there is no pre existing data connector. 

 

Whats is the best way to go about this? I am having trouble understanding the Codeless Connector Platform and the other methods of deploying a custom connector. 

Labels:
289 Views
0 Likes
4 Replies
Reply
4 Replies
Porter76

‎Aug 11 2023 06:50 AM

‎Aug 11 2023 06:50 AM

Re: Microsoft Sentinel Custom Data connectors

@Clive_Watson 

 

I can't for the life of me understand the CCP. It looks like if you want to use it, there needs to already be a connector for the app/tool youre trying to ingest data from (in this case DOMO) in the content hub, which there isn't for DOMO.

 

If the CCP is customizable, how can I set it up for DOMO? Is this the best option for getting logs from DOMO? 

0 Likes
Reply
Clive_Watson

‎Aug 11 2023 06:58 AM

‎Aug 11 2023 06:58 AM

Re: Microsoft Sentinel Custom Data connectors

I think the real question is, can DOMO export a log in the first place, until we know that we dont know what custom connector solution you need.
0 Likes
Reply
Porter76

‎Aug 11 2023 07:05 AM

‎Aug 11 2023 07:05 AM

Re: Microsoft Sentinel Custom Data connectors

I was able to find this document on DOMOs activity log API
https://developer.domo.com/portal/80b418fba449e-activity-log
0 Likes
Reply