Azure Blob Storage¶
Cyderes supports the ingestion of logs from Azure Blob Storage. Blob Storage is a scalable and secure object storage.
Azure App Prerequisite
For this integration, an Azure App must be created. More information can be found about how to do that in the documentation here.
Cyderes Object Storage Best Practices¶
Chronicle Data Types¶
Since Blob Storage is a generic object storage solution. Cyderes can collect any data type as long as the data is separated by containers.
Caveats / Known Limitations¶
- This integration can only ingest one data type per container in Azure Storage
- This integration can only authenticate via Azure Active Directory App with the method described in the CYDERES Azure App Registration guide
- Notifications are currently not supported for Azure Blob Storage
Configuration¶
- Create an Azure App for Cyderes (Cyderes documentation)
- Create a blob storage account (Azure documentation)
- Set access to Azure Active Directory and assign the role "Blob Storage Data Reader" to the Azure App from the first step (Azure documentation)
- Create containers for each separate data type
Gather Information¶
Provide the following information to Cyderes to complete implementation:
- Storage Account Name
- Identity (Azure Active Directory App)
- Application (client) ID
- Directory (tenant) ID
- Secret ID
- Secret Value
- Each blob container name and type of data going into its respective container