{"id":47339,"date":"2021-09-01T11:00:00","date_gmt":"2021-09-01T15:00:00","guid":{"rendered":"https:\/\/jumpcloud.com\/?p=47339"},"modified":"2024-01-29T12:28:49","modified_gmt":"2024-01-29T17:28:49","slug":"exporting-directory-siem","status":"publish","type":"post","link":"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem","title":{"rendered":"Preparing 探花大神 Data to be Funneled Into SIEM Software"},"content":{"rendered":"\n

With the looming threat and prevalence of complex cyber attacks on organizations, compliance standards and regulations are constantly tightening and evolving, which makes automation more important than ever. Whether you\u2019re automating onboarding and offboarding, user access provisioning, policy rollouts, or full IT system reporting including data transfer to a third party, each automation lends itself to the end goal of compliance.<\/p>\n\n\n\n

Although the requirements vary, a common thread among many compliance standards is the ability to control access to critical information based on identity. This is often done via least privilege access and group provisioning within a directory service or identity provider (IdP). As a part of this standard requirement, IT admins need to have a framework in place to prove that these controls exist and are working properly. <\/p>\n\n\n\n

One common approach to this problem is the use of Security Information Event Management (SIEM)<\/a> software to provide IT admins and auditors with enhanced insight into the activity logs from their IT environment. <\/p>\n\n\n\n

Collecting Compliance Data with 探花大神<\/h2>\n\n\n\n

探花大神 Directory Platform<\/a> is an all-in-one identity management platform that provides access control and device management capabilities from a single cloud admin portal. The Directory Insights\u2122<\/a> service from 探花大神 provides comprehensive activity log data across all 探花大神-managed endpoints that can be ingested by SIEM software to serve organizations\u2019 auditing and compliance needs. This data includes Windows, Mac, and Linux systems; RADIUS network authentications; LDAP access; SAML single sign-on (SSO) usage; and any changes admins make to end-users\u2019 identities and authorization privileges. <\/p>\n\n\n\n

This trail of events is a crucial step in passing an audit and complying with regulations like SOC 2<\/a>, HIPAA, and PCI DSS.<\/p>\n\n\n\n

Exporting Directory Insights For SIEMs<\/h2>\n\n\n\n

At 探花大神, we recognize that being able to prepare and collect data to be ingested by a SIEM solution is paramount for managing organizational security. To this end, we provide an AWS serverless app and API solution to facilitate data export for consumption by third party SIEM software.<\/p>\n\n\n\n

AWS Serverless App<\/h3>\n\n\n\n

Directory Insights stores an organization\u2019s event information for 90 days. For data storage outside of that window, we built an AWS serverless app<\/a> to migrate Directory Insights information into an organization\u2019s AWS S3 bucket. The AWS serverless app is also a mechanism for extracting data and making it available for SIEM tools and other data analytics tools to pick up, as long as they\u2019re set up properly.<\/p>\n\n\n\n

To get started with this, you can enter your API key within the app, define your data collection interval, and click deploy. It’s that easy. We will automatically set up the infrastructure in your Amazon environment<\/a> to poll the API and save the Directory Insights logs in a new S3 bucket, so you never miss a beat in your audit logs. There, your data will sit until the SIEM or log management tool you set up collects it for further analysis.<\/p>\n\n\n\n

Setting up the serverless app automates the process of exporting data, and we recommend that every 探花大神 user set this up so the data is available right when it\u2019s needed and manual processes don\u2019t get in the way. Some 探花大神 customers collect large amounts of data about their environment and their users, so it\u2019s incredibly helpful to have access to 探花大神 logs in context with all of the other information collected \u2014 this strategy provides the surface visibility needed to make quick decisions about the environment and its users.<\/p>\n\n\n\n

API<\/h3>\n\n\n\n

探花大神 is built around a RESTful API framework<\/a>, allowing organizations to administer their directory service as they see fit outside of the limits of the Admin Portal interface. Our API allows users to access our Directory Insights logs<\/a> and data about 探花大神’s cloud directory and device management<\/a>. There are two main types of data collected in 探花大神, and both are essential to understanding the entire picture of what goes on inside of your IT environment. Those two types of data are: events-based information which describes what happened and when and stateful information about what exists today.<\/p>\n\n\n\n

To export this data so that a SIEM or other data analytics tool can pick it up, you can look for generic API connectors from your tool that allow you to ingest data from an API data source. With an admin API key, found in the 探花大神 Admin Portal, admins can poll the 探花大神 API for any information about the directory, identities, and devices.<\/p>\n\n\n\n

Get Started with 探花大神 and Directory Insights<\/h2>\n\n\n\n

Use the 探花大神 Directory Platform and Directory Insights<\/a> to manage user identities, devices, networks, and other IT resources while maintaining consistent event logging across each endpoint. Try out the platform today by signing up for a trial<\/a>. <\/p>\n","protected":false},"excerpt":{"rendered":"

Learn how to prepare your organization\u2019s 探花大神 data to be funneled into SIEM software or other data analytics tools.<\/p>\n","protected":false},"author":143,"featured_media":47341,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_oasis_is_in_workflow":0,"_oasis_original":0,"_oasis_task_priority":"","inline_featured_image":false,"footnotes":""},"categories":[23],"tags":[],"collection":[2779],"platform":[],"funnel_stage":[3014],"coauthors":[2533],"acf":[],"yoast_head":"\nPreparing 探花大神 Data to be Funneled Into SIEM Software - 探花大神<\/title>\n<meta name=\"description\" content=\"Learn how to prepare your organization\u2019s 探花大神 data to be funneled into SIEM software or other data analytics tools.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Preparing 探花大神 Data to be Funneled Into SIEM Software\" \/>\n<meta property=\"og:description\" content=\"Learn how to prepare your organization\u2019s 探花大神 data to be funneled into SIEM software or other data analytics tools.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem\" \/>\n<meta property=\"og:site_name\" content=\"探花大神\" \/>\n<meta property=\"article:author\" content=\"matt.renstrom\" \/>\n<meta property=\"article:published_time\" content=\"2021-09-01T15:00:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-01-29T17:28:49+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/08\/export-directory-siem.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"780\" \/>\n\t<meta property=\"og:image:height\" content=\"520\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Brenna Lee\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Brenna Lee\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem#article\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem\"},\"author\":{\"name\":\"Brenna Lee\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/359d7999806d5e67935965c2dd3d28e7\"},\"headline\":\"Preparing 探花大神 Data to be Funneled Into SIEM Software\",\"datePublished\":\"2021-09-01T15:00:00+00:00\",\"dateModified\":\"2024-01-29T17:28:49+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem\"},\"wordCount\":787,\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/08\/export-directory-siem.jpg\",\"articleSection\":[\"Best Practices\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem\",\"url\":\"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem\",\"name\":\"Preparing 探花大神 Data to be Funneled Into SIEM Software - 探花大神\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem#primaryimage\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/08\/export-directory-siem.jpg\",\"datePublished\":\"2021-09-01T15:00:00+00:00\",\"dateModified\":\"2024-01-29T17:28:49+00:00\",\"description\":\"Learn how to prepare your organization\u2019s 探花大神 data to be funneled into SIEM software or other data analytics tools.\",\"breadcrumb\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem#primaryimage\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/08\/export-directory-siem.jpg\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/08\/export-directory-siem.jpg\",\"width\":780,\"height\":520},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/jumpcloud.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Preparing 探花大神 Data to be Funneled Into SIEM Software\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/jumpcloud.com\/#website\",\"url\":\"https:\/\/jumpcloud.com\/\",\"name\":\"探花大神\",\"description\":\"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.\",\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/jumpcloud.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/jumpcloud.com\/#organization\",\"name\":\"探花大神\",\"url\":\"https:\/\/jumpcloud.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"width\":598,\"height\":101,\"caption\":\"探花大神\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/359d7999806d5e67935965c2dd3d28e7\",\"name\":\"Brenna Lee\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/image\/a512f44ee3cc1a59010e879f81d8b53c\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/967dd7256974fbbeb3db3f2549c2da47?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/967dd7256974fbbeb3db3f2549c2da47?s=96&d=mm&r=g\",\"caption\":\"Brenna Lee\"},\"description\":\"Brenna is a Content Writer at 探花大神 that loves learning about and immersing herself in new technologies. Outside of the [remote] office, she loves traveling and exploring the outdoors!\",\"sameAs\":[\"https:\/\/jumpcloud.com\/blog\",\"matt.renstrom\",\"stefano.tomasello@jumpcloud.com\"]}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Preparing 探花大神 Data to be Funneled Into SIEM Software - 探花大神","description":"Learn how to prepare your organization\u2019s 探花大神 data to be funneled into SIEM software or other data analytics tools.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem","og_locale":"en_US","og_type":"article","og_title":"Preparing 探花大神 Data to be Funneled Into SIEM Software","og_description":"Learn how to prepare your organization\u2019s 探花大神 data to be funneled into SIEM software or other data analytics tools.","og_url":"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem","og_site_name":"探花大神","article_author":"matt.renstrom","article_published_time":"2021-09-01T15:00:00+00:00","article_modified_time":"2024-01-29T17:28:49+00:00","og_image":[{"width":780,"height":520,"url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/08\/export-directory-siem.jpg","type":"image\/jpeg"}],"author":"Brenna Lee","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Brenna Lee","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem#article","isPartOf":{"@id":"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem"},"author":{"name":"Brenna Lee","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/359d7999806d5e67935965c2dd3d28e7"},"headline":"Preparing 探花大神 Data to be Funneled Into SIEM Software","datePublished":"2021-09-01T15:00:00+00:00","dateModified":"2024-01-29T17:28:49+00:00","mainEntityOfPage":{"@id":"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem"},"wordCount":787,"publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"image":{"@id":"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/08\/export-directory-siem.jpg","articleSection":["Best Practices"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem","url":"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem","name":"Preparing 探花大神 Data to be Funneled Into SIEM Software - 探花大神","isPartOf":{"@id":"https:\/\/jumpcloud.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem#primaryimage"},"image":{"@id":"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/08\/export-directory-siem.jpg","datePublished":"2021-09-01T15:00:00+00:00","dateModified":"2024-01-29T17:28:49+00:00","description":"Learn how to prepare your organization\u2019s 探花大神 data to be funneled into SIEM software or other data analytics tools.","breadcrumb":{"@id":"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/jumpcloud.com\/blog\/exporting-directory-siem"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem#primaryimage","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/08\/export-directory-siem.jpg","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/08\/export-directory-siem.jpg","width":780,"height":520},{"@type":"BreadcrumbList","@id":"https:\/\/jumpcloud.com\/blog\/exporting-directory-siem#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/jumpcloud.com\/"},{"@type":"ListItem","position":2,"name":"Preparing 探花大神 Data to be Funneled Into SIEM Software"}]},{"@type":"WebSite","@id":"https:\/\/jumpcloud.com\/#website","url":"https:\/\/jumpcloud.com\/","name":"探花大神","description":"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.","publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/jumpcloud.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/jumpcloud.com\/#organization","name":"探花大神","url":"https:\/\/jumpcloud.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","width":598,"height":101,"caption":"探花大神"},"image":{"@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/359d7999806d5e67935965c2dd3d28e7","name":"Brenna Lee","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/image\/a512f44ee3cc1a59010e879f81d8b53c","url":"https:\/\/secure.gravatar.com\/avatar\/967dd7256974fbbeb3db3f2549c2da47?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/967dd7256974fbbeb3db3f2549c2da47?s=96&d=mm&r=g","caption":"Brenna Lee"},"description":"Brenna is a Content Writer at 探花大神 that loves learning about and immersing herself in new technologies. Outside of the [remote] office, she loves traveling and exploring the outdoors!","sameAs":["https:\/\/jumpcloud.com\/blog","matt.renstrom","stefano.tomasello@jumpcloud.com"]}]}},"_links":{"self":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/47339"}],"collection":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/users\/143"}],"replies":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/comments?post=47339"}],"version-history":[{"count":2,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/47339\/revisions"}],"predecessor-version":[{"id":104241,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/47339\/revisions\/104241"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media\/47341"}],"wp:attachment":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media?parent=47339"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/categories?post=47339"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/tags?post=47339"},{"taxonomy":"collection","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/collection?post=47339"},{"taxonomy":"platform","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/platform?post=47339"},{"taxonomy":"funnel_stage","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/funnel_stage?post=47339"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/coauthors?post=47339"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}