SIEM (Security Information and Event Management) is a recognized standard for collecting, aggregating, and analyzing events within an IT organization. This documentation provides detailed descriptions of, and step-by-step instructions for, the Identity Cloud's implementation of SIEM. In addition to this set of documents, you might also want to take a peek at the SIEM Event Delivery REST APIs.
In this section of the documentation
- An Introduction to SIEM Event Delivery
- What are SIEM Events?
- Events Reported by the SIEM Event Delivery Service
- An Important Note Concerning Duplicate Events
- How the SIEM Event Delivery Service Works
- Identity Cloud Event Management and Analysis Tools
Managing the Configuring the SIEM Event Delivery Infrastructure
- Provisioning SIEM Event Delivery
- Activating/Deactivating SIEM Delivery Feeds
- Configuring Amazon S3 Buckets and Public Keys
- Retrieving Data from an S3 Bucket
- Managing Public Keys
- Suppressing SIEM Events
Reference