cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Highlighted

API Data Sources

Jump to solution

Has anyone created data sources using API before, like the builtin ones for VMWare? Have customers requiring logs from Cloud based services that can only be retrieved via API. Or do I have to relay on third party tools to retrieve and convert into a format SIEM can support

1 Solution

Accepted Solutions
Highlighted
McAfee Employee
McAfee Employee
Report Inappropriate Content
Message 2 of 6

Re: API Data Sources

Jump to solution

Hi Jacques

i would imagine that if you can pull the data using an API and place it into a file, you can then create a custom parser to pull the data out of the file over CIFS or other collection methods.  but these would not be supported out the box by the SIEM as the parsers are created normally for a specific collection method.

View solution in original post

5 Replies
Highlighted
McAfee Employee
McAfee Employee
Report Inappropriate Content
Message 2 of 6

Re: API Data Sources

Jump to solution

Hi Jacques

i would imagine that if you can pull the data using an API and place it into a file, you can then create a custom parser to pull the data out of the file over CIFS or other collection methods.  but these would not be supported out the box by the SIEM as the parsers are created normally for a specific collection method.

View solution in original post

Highlighted
Reliable Contributor
Reliable Contributor
Report Inappropriate Content
Message 3 of 6

Re: API Data Sources

Jump to solution

It does support some cloud services, like Amazon and Microsoft, depending on what verison of the SIEM you're running.  So it can pull directly from APIs.

Highlighted

Re: API Data Sources

Jump to solution

Thanks to both, the response was as I expected unfortunately. 

Level 8
Report Inappropriate Content
Message 5 of 6

Re: API Data Sources

Jump to solution
Hi, I need help to get API from Azure to SIEM ESM 10.3. Can you help me?
Highlighted
McAfee Employee
McAfee Employee
Report Inappropriate Content
Message 6 of 6

Re: API Data Sources

Jump to solution

Hi 

 

What exactly do you need to know.  the setup for Azure is at https://docs.mcafee.com/bundle/enterprise-security-manager-data-sources-configuration-reference-guid...

You Deserve an Award
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from McAfee experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by McAfee employees.
Join the Community
Join the Community