Cynerio Security Events connector for Microsoft Sentinel
The Cynerio connector allows you to easily connect your Cynerio Security Events with Microsoft Sentinel, to view IDS Events. This gives you more insight into your organization network security posture and improves your security operation capabilities.
This is autogenerated content. For changes, contact the solution provider.
Connector attributes
Connector attribute | Description |
---|---|
Log Analytics table(s) | CynerioEvent_CL |
Data collection rules support | Not currently supported |
Supported by | Cynerio |
Query samples
SSH Connections events in the last 24 hours
CynerioEvent_CL
| where date_t > ago(24h) and title_s == 'SSH Connection'
Vendor installation instructions
Configure and connect Cynerio
Cynerio can integrate with and export events directly to Microsoft Sentinel via Azure Server. Follow these steps to establish integration:
In the Cynerio console, go to Settings > Integrations tab (default), and click on the +Add Integration button at the top right.
Scroll down to the SIEM section.
On the Microsoft Sentinel card, click the Connect button.
The Integration Details window opens. Use the parameters below to fill out the form and set up the connection.