Acronis Integration with Architecture of Logsign

Overview

Acronis Cyber Protect Cloud combines backup, next-generation AI-based anti-malware, antivirus, and endpoint protection management into one solution. Integration and automation provide ease for service providers by reducing complexity, increasing productivity, and decreasing operating costs.

Acronis Integration with Logsign

The following substances mention the definition of Acronis and the event process after integrating with Logsign.

  • Acronis CyberCloud sends the alerts, which comprise the Acronis CyberCloud Monitoring screen at Acronis API.
  • Logsign integrates with Acronis API, and Logsign requests available alerts on CyberCloud API after authentication.
  • Acronis API sends these alerts as a response to that request.
  • Logsign enriches, normalizes, categorizes and shows on the Logsign Search screen all alert types as an event.
  • Logsign creates vendor-specific alerts, reports and dashboards. Incident Management is also available for anomaly alerts. These are transferred from Acronis API.

Use Case Scenarios for Logsign-Acronis Integration

Sample use case scenarios are available for this part.

1. EDRIncidentDetected Alert Type Scenario

  •  EDRIncidentDetected alert occurred in Acronis CyberCloud.
  • Logsign gets that alert as an event, enriching, normalising and categorising that event.
  • Logsign Alert Engine worked, and Logsign detects EDRIncidentDetected, an anomaly for the Acronis CyberCloud device. Logsign sent an email to users to inform them about this alert.
  • Logsign created an incident for that event, and analysts can do incident management for this event.
  • The analyst understands this incident can occur over again and wants to automate the incident management process. Logsign provides an Action Rule Module to automate the process.  

As a result, analysts handle EDRIncidentDetected Alert and create automation for the processes.

2. BackupFailed Alert Type Scenario

  • BackupFailed alert occurred in Acronis CyberCloud.
  • Logsign gets that alert as an event, enriching, normalizing and categorizing that event.
  • Vendor-specific predefined dashboards show all event types, including BackupFailed event type. Analysts can see all Backup Failed operations for integrated Acronis CyberCloud Devices and track them by time and all other attributes which came from Acronis API. 
  • In addition, Logsign provides vendor-specific predefined reports for these events in pdf, excel or HTML.
  • On the other hand, analysts can create custom reports using different report types. Logsign has the capability to schedule these reports daily, weekly or monthly.

As a result, analysts track all Acronis alerts using Logsign dashboards, and Logsign provides vendor-specific reports for Acronis alerts.

 

Was this article helpful?
0 out of 0 found this helpful

Articles in this section

See more
Become a Certified Logsign User/Administrator
Sign-up for Logsign Academy and take the courses to learn about Logsign USO Platform in detail. Enjoy the courses, and get your badges and certificates. In these courses, you'll learn how to use Logsign in your work and add value to your career.
Visit Our Blog
Our Logsign USO Platform illustrate our expertise. So do the blog. Through our blog posts, deepen your knowledge on various SecOps topics or get updated about important news & modern approaches for cybersecurity. Get into the habit of reading valuable information provided by Logsign. Be a step ahead.