You can use this document to learn about the specific, high-level steps needed to obtain Log Relay, and send additional log types to Armor's Security Information & Event Management (SIEM).
| Insert excerpt |
|---|
| ESLP:Permissions for Log Relay and Remote Log Collection (snippet) |
|---|
| ESLP:Permissions for Log Relay and Remote Log Collection (snippet) |
|---|
| nopanel | true |
|---|
|
...
| Expand |
|---|
| title | Option 2: For Armor Complete Users |
|---|
|
Use the PUT Assign Log Collector API call to add Log Relay to your account. | Note |
|---|
In some cases, the terms Log Depot, Host Log Collector, or Log Relay may be used interchangeably. |
| Method / Type | PUT |
|---|
| API Call / URL | /vms/core/{coreInstanceId}/profile |
|---|
| Parameters | You must enter your virtual machine's coreInstanceId. | Note |
|---|
To locate this ID, in AMP, access the Virtual Machine screen, click the desired virtual machine to expand, and then copy the Agent ID. The Agent ID is a combination of numbers and letters.  |
|
|---|
| Full API Call / URL |
| Code Block |
|---|
| PUT https://api.armor.com//vms/core/1gfh39d-hdd78-dhd73-434/profile |
|
|---|
- Contact Armor Support to add a custom file path via a host log collector.
|
...
