CrowdStrike Falcon Next-Gen SIEM

Integrating Keeper SIEM push to Crowdstrike Falcon Next-Gen SIEM

Overview

Keeper supports event streaming into CrowdStrike Next-Gen SIEM. External logging is real-time, and new events will appear almost immediately. Setup instructions are below.

Add the Data Connector

From the CrowdStrike dashboard, visit the Data onboarding > Data Connectors screen.
Select "+ Add connection" and search for Keeper
Click "Configure", assign a name, and then "Create connection".

Create the API Key

From the Data Connector screen, in the Keeper row click the overflow menu and then "Generate API Key".
Save the API Key and API URL for the next step.

Activate the Integration

From the Keeper Admin Console, go to Reporting & Alerts > External Logging
Select CrowdStrike Falcon Next-Gen SIEM
Provide the API Key and API URL from Step 2.
Click Test and then Save.

Setup Complete!

When SIEM logs are sent from Keeper to CrowdStrike, the data will begin to populate in the "Third Party" source within a few minutes.

PreviousLegacy Azure Sentinel NextDatadog

Last updated 1 month ago

Was this helpful?

hashtagOverview

hashtagAdd the Data Connector

hashtagCreate the API Key

hashtagActivate the Integration

hashtagSetup Complete!

Overview

Add the Data Connector

Create the API Key

Activate the Integration

Setup Complete!