Cynerio Security Events connector for Microsoft Sentinel
The Cynerio connector allows you to easily connect your Cynerio Security Events with Microsoft Sentinel, to view IDS Events. This gives you more insight into your organization network security posture and improves your security operation capabilities.
Connector attributes
| Connector attribute | Description |
|---|---|
| Log Analytics table(s) | CynerioEvent_CL |
| Data collection rules support | Not currently supported |
| Supported by | Cynerio |
Query samples
SSH Connections events in the last 24 hours
CynerioEvent_CL
| where date_t > ago(24h) and title_s == 'SSH Connection'
Vendor installation instructions
Configure and connect Cynerio
Cynerio can integrate with and export events directly to Microsoft Sentinel via Azure Server. Follow these steps to establish integration:
In the Cynerio console, go to Settings > Integrations tab (default), and click on the +Add Integration button at the top right.
Scroll down to the SIEM section.
On the Microsoft Sentinel card, click the Connect button.
The Integration Details window opens. Use the parameters below to fill out the form and set up the connection.
Next steps
For more information, go to the related solution in the Azure Marketplace.
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for