Feature/cplat 29997 Updated siem.py and config.ini to communicate with legacy-siem service

sophos / Sophos-Central-SIEM-Integration

Simple integration script for 3rd party systems such as SIEMs. Offers command line, file or syslog output in CEF, JSON or key-value pair formats.

121 stars 70 forks source link

Closed anil-sophos closed 3 years ago

anil-sophos commented 3 years ago

Updated the config.ini to added the client_id and client_secret configuration
Updated the siem.py to add method which return Jwt token using client_id and client_secret.
Bifurcated alert and events API call based on API Credentials and API token
Currently put all the configuration in config.ini. Later put client_id, client_secret and tenant_id (Here tenant_id is optional for customer)

ramksophos commented 3 years ago