Exporting platform audit log data with AA

I’m curious if Netskope platform audit log data can be exported using Advanced Analytics or put on the road map? It would be helpful to generate reports for events such as Create/Delete Admins, tunnel modifications, and other events.

This arose from a recent PCI audit (looking forward into PCI 4.) where logs related to VPN access must be reviewed (and eventually ingested into SIEM or similar platform to search for anomalies) and immediately searchable up to 90 days and stored for 1 year.

Thanks!

Page 1 / 1

Hello @csword !
Today, it is not possible through NAA. However, we could internally raise an ER to review its feasibility. Currently, it is possible to export it directly from the UI or via the Rest API v2 endpoint.

https://docs.netskope.com/en/netskope-help/admin-console/rest-api/rest-api-v2-overview-312207/

This allows you to process the data with your SIEM or any automation system that supports Rest APIv2 integrations.

Reply

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded