Feeding logs to Sentinel or Syslog/CEF
Can someone please publicly share their 1password integration with Microsoft Sentinel? Or at the very least, Syslog/CEF that could be used with any SIEM on the market? The documentation dead-ends with "built it yourself" and another post here is steered toward professional services (which gives the bad energy of a certain competitor in the credential security market).
1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Browser:_ Not Provided
Comments
-
Hello @InfoSecGuy,
Thanks for asking about the 1Password Events API. 1Password currently offers prebuilt integrations with Splunk, Elastic, Sumo Logic, and Panther, as shown in our Get started with 1Password Events Reporting support article.
While there isn't currently an integration with Microsoft Sentinel, I'd be happy to connect you with our integration specialists to share your feedback and determine if a custom integration may be possible for you. Please send an email to BusinessSupport@1Password.com, then share your support ticket number here so I can connect this post with that email.
Thank you,
0