Solved

REST API V2 failing for Sumo Logic

Forum|Forum|9 months ago
January 29, 2025
1 reply
164 views

Forum|alt.badge.img

+5

jschuele
New Member III

Sumo Logic has a Netskope app that can be installed and configured to use API v2 to ingest logs. I created a new token in Netskope as described in the doc. I then installed the Netskope app and created the collector in Sumo Logic. It shows healthy, but there is an error saying “ 403 - error connecting to endpoint, received 403: {“message”: You cannot consume this service”}. Any ideas whats wrong?

Best answer by ejang

Hi @jschuele

You need to change the API endpoints with the following.

/api/v2/events/dataexport/events/alert
/api/v2/events/dataexport/events/page
/api/v2/events/dataexport/events/infrastructure
/api/v2/events/dataexport/events/application
/api/v2/events/dataexport/events/network
/api/v2/events/dataexport/events/audit
/api/v2/events/dataexport/events/connection
/api/v2/events/dataexport/events/incident
/api/v2/events/dataexport/events/endpoint
/api/v2/events/data/alert

This topic has been closed for replies.

Forum|alt.badge.img

+5

ejang
Netskope Employee
Answer
Forum|Forum|9 months ago
February 1, 2025

Hi @jschuele

You need to change the API endpoints with the following.

/api/v2/events/dataexport/events/alert
/api/v2/events/dataexport/events/page
/api/v2/events/dataexport/events/infrastructure
/api/v2/events/dataexport/events/application
/api/v2/events/dataexport/events/network
/api/v2/events/dataexport/events/audit
/api/v2/events/dataexport/events/connection
/api/v2/events/dataexport/events/incident
/api/v2/events/dataexport/events/endpoint
/api/v2/events/data/alert

"Security and Networking Reimagined."

Like