Has any one completed the stage 2 of SOAR migration to GCP ?
Could you simply explain the pointers that you followed for the same.
Question
Google cloud migration - stage 2 of soar migration to GCP
+4- Bronze 1
+13This may help with the IAM portion of the phase 2 migration -
Are there any portions that you are looking for assistance on or more of a general inquiry? Some of the portions of the migration may or may not be applicable to you - for example, not everyone I work with uses webhooks for ingestion of alerts to the SOAR or a remote agent.
+4- Bronze 1
Hi
-
Migration of SOAR Permission Groups and Permissions to Google Cloud IAM.
-
Migration of SOAR APIs to the new unified Chronicle API, requiring updates to existing scripts and integrations.
-
Migration of webhooks.
-
Migration of remote agents.
-
Migration of SOAR Audit logs.
I need help checking the first and last ones as i think others are not applicable to us as well am i right
see under my SOAR settings this is what i see under webhook api keys and remote agents under my SOAR settings :
+13The video in my initial reply will go over the IAM Migration piece. For the SOAR audit logs, that will take place after IAM migration and will be the default for SecOps - https://docs.cloud.google.com/chronicle/docs/secops/collect-secops-soar-logs#enable_soar_log_collection:~:text=Python%20script%20outputs.-,Google%20SecOps,-(SIEM%20%2B%20SOAR%20Unified
Based on your screenshots, I would agree you do not need to worry about migrating webhooks and remote agents.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.