This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
keamas
Explorer
Explorer
‎2025-02-17 09:15 AM

Send logs from Infinity Portal to a SIEM Solution

Hi is there any way to send Logs from the Infinty Portal to a SIEM Solution Like Azure Sentinel.

I would like to export CHECK POINT CloudGuard WAF Logs to Azure Sentinel automatically.

Is there any solution ?

 

3 Replies
the_rock
MVP Diamond
MVP Diamond
‎2025-02-17 09:32 AM

Yes, there is. See if below helps you. If not, I can ask one of my colleagues, he is Linux AND Siem GENIUS, everyone says that about him 🙂

Let me know.

Andy

https://community.checkpoint.com/t5/Management/Log-exporter-amp-Splunk-TLS/m-p/126164#M27609

https://community.checkpoint.com/t5/Management/Log-exporter-TLS-config-with-QRadar/m-p/115020

https://community.checkpoint.com/t5/Infinity-Portal/Logs-from-Infinity-Portal-to-Splunk/m-p/193420#M...

 

Best,
Andy
"Have a great day and if its not, change it"
0 Kudos
genisis__
MVP Silver
MVP Silver
‎2025-02-17 09:37 AM
In response to the_rock

If I remember correctly - you will need to get the collector to generate a certificate so you can then utilise a TLS connecting inbound to the collector, and of course ensure you have the the export licenses (not expensive).

the_rock
MVP Diamond
MVP Diamond
‎2025-02-17 09:42 AM
In response to genisis__

That sounds right. I will confirm with my colleague.

Andy

Best,
Andy
"Have a great day and if its not, change it"
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events