...

Table of Contents

Overview

We are providing you with the steps to integrate your Okta with Seceon SIEM so One can have Comprehensive visibility and Proactive Threat Detection in your Environment. There will be a log transfer between your firewall to APE(Analytics and Policy Engine) via CCE (Collection and Control Engine ).

...

{"host": "<domain_name>"}

Click on the Save button.

...

Verification of configuration

Verification can be done either from CCE Server or from UI.

Using UI

STEP 1: Log in to UI >> SYSTEM

...

STEP 2: >> LOGS AND FLOWS COLLECTION STATUS.

...

STEP 3:>>Inside SOURCE DEVICE IP, IP will reflect.

...

Using CCE SERVER

“sudo tcpdump -i any host 514 (for logs) and 9995 (for flows) and host <IP address> -AAA” command should be running on the CCE server to check whether or not we are getting logs.

Versions Compared

Old Version 8

New Version Current

Key

Overview

Verification of configuration

Using UI

Using CCE SERVER

Page Comparison

Versions Compared

Old Version 8

New Version Current

Key

Overview

Verification of configuration

Using UI

Using CCE SERVER