Chronicle
Chronicle SIEM is a cloud service, built as a specialized layer on top of core Google infrastructure, designed for enterprises to privately retain, analyze, and search the massive amounts of security and network telemetry they generate.
Creating a Chronicle connection
Using Service Account
To create the connection you need:
- An API Address
- A Credentials
- A Google OAuth 2.0 Scopes
Obtaining the credentials
Please refer to the Chronicle Documentation to obtain your service account credentials.
Creating your connection
-
In the Blink platform, navigate to the Connections page > Add connection. A New Connection dialog box opens displaying icons of external service providers available.
-
Select the Chronicle icon. A dialog box with name of the connection and connection methods appear.
-
(Optional) Edit the name of the connection. At a later stage you cannot edit the name.
-
Select Service Account as the method to create the connection.
-
Fill in the parameters:
- The API Address
- The Credentials
- The Google OAuth 2.0 Scopes
-
(Optional) Click Test Connection to test it.
-
Click Create connection. The new connection appears on the Connections page.