SIEM

Steps for Integrating Security information and event management (SIEM) solutions with K2 Portal.

1. Go to SIEM Integration View

Open SIEM under Settings page on K2 Portal, Alternatively go to the SIEM | Settings | K2 Portal

Click on the + Button to add SIEM solution.

2. Integrate SIEM Solution

In this step, we are going to setup SIEM integration with K2 Portal. Once you have clicked on + button Add Service menu would have opened up.

SIEM Service

There are various SIEM solutions available for integration under SIEM service.

  • Splunk Enterprise

  • Solarwinds Loggly

  • Slack

  • Sumologic

  • Opsgenie

Select one of the above SIEM solution as per your setup.

Endpoint

Provide the endpoint URL for the SIEM solution you have picked in last field.

Token

Provide token which is required for some SIEM solutions.

Click on the Save Button once you've filled the form.

3. Verification/Generate Notifications

Once information filled in last step is verified and SIEM solution is added fine then it will shown under SIEM integration page like below.

Alternatively visit SIEM | Settings | K2 Portal to see all your SIEM solutions integrations

Now all the events of K2 Portal will be published to your SIEM solution.

PreviousvSRX + K2 On-PremisesNextJIRA

Last updated

Was this helpful?