Views:

Generate an API token to begin collecting third-party logs and forwarding the log data to Trend Vision One for analysis and correlation or compliance purposes.

Procedure

  1. Go to Agentic SIEM & XDRData Source and Log ManagementThird-party log repositories.
  2. Create a new log repository or select an existing log repository.
  3. On the Log repository panel, go to the Collectors tab and click Add collector.
    The Add collector screen appears.
  4. Select the vendor, product, log format, and log timezone of the log source.
  5. Specify the collector name and description.
  6. Select API ingestion as the log ingestion method.
  7. Click Add.
  8. On the Generate ingestion token screen, select the API token expiration and click Generate token.
  9. On the Copy ingestion token screen, copy and save the ingestion token.
  10. Click Close.
  11. On the Log repository drawer on the Collectors tab, verify the information under the collector you created.
    Note
    Note
    To manage log ingestion tokens for your third-party log collectors, go to Agentic SIEM & XDRData Source and Log ManagementData sources and retentionThird-party log repositories and click Manage log ingestion tokens.