Tip
This article was accurate at the time of writing, but changes happen. If you find the instructions are outdated, leave a description in the comment field below and let us know!
Step 1: Enable console access
-
Sign in to the Sumo Logic CIP console to create a new user.
-
Navigate to Administration > Users and Roles > Users and click the Add User button at the top right of the page.
-
FIll in the below information.
-
For First Name type Expel.
-
For Last Name type SOC analysts.
-
For Email type: soc+<your_company_name>@expel.io.
Tip
Yes, the "+" sign is part of the email address, and it's important. Click here to find out why.
-
For Roles select the analyst role.
-
Click Add New User.
-
-
Verify that Expel SOC now appears on the Users page.
-
Sign into Sumo Logic CSE console.
-
Navigate to Accounts.
-
Click Invite at the top right of the page.
-
Invite the Sumo Logic CIP user from step 1 with a role of Analyst.
Step 2: Generate API credentials
-
Edit the Sumo Logic CSE user created in step 1.
-
Select API Key Enabled.
-
Select YES, REGENERATE API KEY.
-
Click UPDATE and log out.
-
Log back into Sumo Logic CSE console with the new user created in step 1.
-
Click the user profile at the top right of the page.
-
Copy API Key and make note of it.
Step 3: Configure the technology in Workbench
-
In a new browser tab, log into https://workbench.expel.io.
-
On the console page, navigate to Settings and click Security Devices.
-
At the top of the page, click Add Security Device.
-
Search for and select Sumo Logic Cloud.
-
Type Name and Location. For example Sumo Logic CSE and Expel Lab.
-
For Server type the Sumo Logic CSE URL.
-
For API Key type the API Key copied and noted during step 2.
-
For Console Login type the information for user created in step 1.
-
Comments
0 comments
Please sign in to leave a comment.