Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Version published after converting to the new editor

You can use this document to learn about the specific, high-level steps needed to obtain Log Relay, and send additional log types to Armor's Security Information & Event Management (SIEM).

Insert excerpt
ESLP:Permissions for Log Relay and Remote Log Collection (snippet)
ESLP:Permissions for Log Relay and Remote Log Collection (snippet)
nopaneltrue

...

Expand
titleOption 2: For Armor Complete Users
  1. Use the PUT Assign Log Collector API call to add Log Relay to your account.

    Note

    In some cases, the terms Log Depot, Host Log Collector, or Log Relay may be used interchangeably.


    Method / TypePUT
    API Call / URL

    /vms/core/{coreInstanceId}/profile

    Parameters

    You must enter your virtual machine's coreInstanceId.

    Note

    To locate this ID, in AMP, access the Virtual Machine screen, click the desired virtual machine to expand, and then copy the Agent ID. The Agent ID is a combination of numbers and letters.


    Full API Call / URL


    Code Block
    languagetext
    PUT https://api.armor.com//vms/core/1gfh39d-hdd78-dhd73-434/profile



  2. Contact Armor Support to add a custom file path via a host log collector.

...