Create Azure Sentinel Integration
Create the CDR integration with Azure Sentinel.
To obtain the cipsProductId, refer to Create Product.
Input ParametersInput Parameters
| Parameter Name | Mandatory/Optional | Data Type | Description |
|---|---|---|---|
integrationType |
Mandatory | String | Specifies the type of integration to be configured. Example: "azure_sentinel". |
workspaceId |
Mandatory | String | The identifier of the Azure Sentinel workspace to which data will be sent. Refer to Create Workspace. |
primaryKey |
Mandatory | String | The primary authentication key for accessing the Azure Sentinel workspace. Refer to Create Workspace. |
customLogName |
Optional | String | Custom name for the log table in Azure Sentinel. Used for organizing ingested data. |
apiVersion |
Optional | String | Specifies the API version to use for the integration. Default typically corresponds to Azure API standards. Example: "2016-04-01". |
Create CDR IntegrationCreate CDR Integration
API Request
curl --location '<platform_url>/partner-integration/721/integration' --header 'accept: application/json' --header 'Content-Type: application/json' --header 'Authorization: Bearer token'
Request POST Data (integration.json)
Body:
{
"integrationType": "azure_sentinel",
"workspaceId": "workspaceId",
"primaryKey": "primaryKey",
"customLogName": "testCdr",
"apiVersion": "2016-04-01"
}
JSON Output
"productName": "cdr", "integrationType": "azure_sentinel", "integrationValidated": true