Hello,
We are ingesting Netskope logs via CE Log Shipper into Elastic. These are events and alerts.
How can we ingest the Netskope client related events for users disabling/re-enabling the client? Advanced Analytics presents this information, so the logs exist. Can they be exported via CE Log Shipper?
Thanks.
Not as far as I know, bizarrely, client logs seems to be somewhat of an afterthought for Netskope. There was not even a V2 API for them until recently, and it’s implemented in a strange way compared to the other dataexport api endpoints:
As far as I can tell, Cloud Exchange does not attempt to pull client logs using this endpoint, as it is not required in the Cloud Exchange setup documentation:
https://docs.netskope.com/en/api-tokens/#v2-rest-api-scopes
If you haven't already registered, now is a good time to do so. After you register, you can post to the community, receive email notifications, and lots more. It's quick and it's free! Create an account
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.
