How to send Proofpoint logs to SumoLogic?

Comments

2 comments

  • Avatar
    Piotr Woch

    Hi Mike!

    One way I can suggest is to use a bash script to retrieve the data via Proofpoint API, save to a file and use an installed Sumo collector to send the files off to Sumo, or modify the script to forward the data to a hosted Sumo collector.

    For starters, here's a link to an example shell script that invokes Proofpoint API:

    https://help.proofpoint.com/Threat_Insight_Dashboard/API_Documentation/SIEM_API#Sample_Unix_Shell_Script

    I hope this helps!

     

    0
    Comment actions Permalink
  • Avatar
    Ryan Lovergine

    We're new Sumo Logic customers (and ProofPoint customers) and we would also like to see a better solution fro Sumo Logic on how to consume the ProofPoint POD (not SIEM API) logs into Sumo Logic. 

    0
    Comment actions Permalink

Please sign in to leave a comment.