Overview
To view PagerDuty logs through the Logsign Unified SecOps Platform product, you will need to perform some configurations.
First, enter the link you have for PagerDuty. You are expected to be an authorized user who can access the management panel and take actions.
Prerequisites
- Logsign Unified SecOps Platform 6.4.21+ versions support this integration.
Configure On PagerDuty
First we need to create a service account. We will use this service account ID when adding resources.
We need to click on services in the top menu, select new service from the right and create a service.
We enter the information and create a service.
At the last stage, we need to select the Events API V2 option in the integrations field.
Once the service is created, we can log into it and note the service id in the address bar.
Then we proceed to the API Key creation stages.
After entering the product interface with an authorized user, we need to click on the 'Integrations' tab in the menu at the top.
When we click on the Integration tab, click on the API Access Keys tab under the 'Developer Tools' tab.
After this process, we are expected to create an API key.
When the API Key creation process is finished, we need to save the API Key it gives us.
When the API key is created, we need to log in to the Logsign Unified SecOps Platform interface and add the key written here.
Log into Logsign Unified SecOps Platform and then click on the Settings option in the top menu. In the window that opens, click on ‘Data Collection’ on the left side to view the sources you have added to Logsign Unified SecOps Platform. Click on the ’ + Device ’ option on the right side to begin the process of adding a source.
First, under Devices, select API, and then choose PagerDuty in the Provider section. Fill in the fields based on the information we have obtained.
In Host, you enter the url you need to access in the cloud.
Token is the information given to you when you create the API.
Service IDS is the number of the service you created.