Sumo Logic
Early Access: This integration is provided as an Open Authorization API (OAA) connector package. Contact our support team for more information.
Veza SumoLogic Connector
Python connector for SumoLogic to collect roles, permissions and users data for the Veza Open Authorization (OAA) API.
Veza Application Mapping
SumoLogic | OAA Application | Notes |
---|---|---|
Instance | Application | |
Roles | Local Roles | |
Users | Local Users | |
Permissions | Local Permissions |
Discovered Properties
Entity | Property | Description |
---|---|---|
Role |
| Role's ID provided by SumoLogic |
Role |
| Role's name |
Role |
| Role's Description |
Role |
| Role defined by system or not |
User |
| User's First name |
User |
| User's Last name |
User |
| User's email address. |
User |
| User's ID provided by SumoLogic |
User |
| User's two factor authentication enabled or not. |
User |
| User account is locked or not. |
User |
| User active or not |
User |
| User's last active timestamp |
User |
| User's creation timestamp |
Permissions |
| Permission's name |
Limitations
The Administrator role is a super user. It has all of the capabilities that can be assigned to a role. Hence, Administrator capabilities are considered as the OAA permissions. Admin Permissions
Permissions in SumoLogic can be implicit. For example, a role explicitly granted the ManageFields capability will implicitly provide the ViewFields and ViewFieldExtractionRules capabilities for users with that role. Implicit permission calculations are not handled by the connector (only the explicitly granted capability is represented).
Setup
SumoLogic
To generate Access ID and Access Key follow the steps Create your access key
Veza
Generate an API key for your Veza user. API keys can be managed in the Veza interface under Administration -> API Keys. For detailed instructions consult the Veza User Guide.
Running the Connector
Command Line
Install the requirements:
Set the Secrets:
Run the connector:
Parameters
CLI Parameter | Environment Variable | Description |
---|---|---|
|
| the URL of the Veza instance system |
n/a |
| API key for Veza connection |
|
| the URL of the Sumo Logic to make API calls |
n/a |
| Access ID of SumoLogic User Account |
n/a |
| Access Key of SumoLogic User Account |
| n/a | Set the log level to debug |
| n/a | Save OAA JSON payload to file |
| n/a | Create/update a Veza Report. Defaults to true for first discovery |
Reports
On first discovery, connector will automatically populate Veza Insights Queries and Report associated with SumoLogic. Queries created include:
All SumoLogic Users
All SumoLogic Roles
Active SumoLogic Users
SumoLogic Users Not Used in Last 90 Days
SumoLogic Users with Assigned Roles
SumoLogic Administrators
SumoLogic Users related to Okta Users
SumoLogic Users not related to Okta Users
SumoLogic Users related to Deactivated Okta Users
Last updated