Logz.io

Integrating Keeper SIEM push to Logz.io

Overview

Keeper supports event streaming into Logz.io deployments. External logging is real-time, and new events will appear almost immediately. Setup instructions are below.

Logz.io uses their HTTPS listener method.

The connection to Logz.io requires two fields:

  • Host (e.g. mycompany.logz.io)

  • Token

Please refer to your Logz.io documentation for generating a security token.

Important: Ensure that the endpoint is using a valid signed SSL certificate that has a domain matching the subject name in the certificate. The certificate must also include the full certificate chain from your CA. Keeper's systems will refuse to connect to a self-signed certificate. Also, ensure that your Logz.io server allows traffic from Keeper servers. See Firewall Configuration page.

Last updated