Datadog Log Forwarding¶
Overview¶
Datadog is a very common and powerful SIEM that is used by many companies. Valtix supports Log Forwarding to Datadog to send security events and other log information for processing, storage, access and correlation. The information sent is in an unstructured JSON format where Datadog can process the attribute-value pairs.
Requirements¶
In order to forward logs to Datadog, you will need the following information:
- Datadog account
- Endpoint URL
- API Key
Tip
- To Sign up for a Datadog account, refer to Datadog Account
- To create a Datadog API Key, refer to Datadog API Key
Profile Parameters¶
| Parameter | Deonticity | Default | Description |
|---|---|---|---|
| Profile Name | Required | A unique name to use to reference the Profile | |
| Description | Optional | A description for the Profile | |
| SIEM Vendor | Required | Datadog | The SIEM used for the Profile |
| Skip Verify Certificate | Optional | Unchecked | Whether to skip verifying the authenticity of the certificate |
| API Key | Required | The Datadog API Key to allow Valtix to communicate with Datadog | |
| Endpoint | Required | https://http-intake.logs.datadoghq.com/ | The endpoint used to access Datadog to send events |