Hi,
I am trying to ingest jamf-pro logs at the end i see this message:"Please Note,
An API key is needed to complete feed setup. To generate an API key, go to the Google Cloud console: APIs & Services > Credentials
Learn how to set up API keys" after i create this API key where should i use it? Is there any related documentation for Jamf-pro connection. Thanks in advance.
Page 1 / 1
Hi yasinmnk,
Which method are you using to ingest jamf logs to secops?
Hi @Ben_T i am using Feed and under that as source type i am using webhook
Thanks for that info. Did you click through the feed creation and then copy the key that gets created in the next step?
So. this is a SIEM questions, not SOAR.
For webhook feed, two credentials:
1. secret key -> from the SecOps feed config page
2. API key -> from the BYOP project which ties to the SecOps instance:
- Go to the Google Cloud console Credentials page.
- Click Create credentials, and then select API key.
- Restrict the API key access to the Chronicle API.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.