Integrations
SIEM
How to export your Formal logs to your SIEM?
You can integrate Formal with your SIEM to forward queries made to Formal Sidecars. This allows you to streamline the flow of queries between Formal Sidecars and your integrated application.
By default, Formal will forward queries made to all Sidecars.
Supported Logs applications
Add SIEM integration
1
First Step
Navigate to the SIEM application.
2
Second Step
Click the Add New Log Integration
button.
3
Third Step
Choose the desired Logs application.
4
Fourth Step
Fill in the relevant connection details according to the desired log provider:
- For Datadog you’ll need:
- Datadog site
- Datadog account ID
- Datadog API key
- For Splunk you’ll need:
- Splunk site
- Splunk API key
- For AWS S3 you’ll need:
- AWS access key
- AWS secret access key
- AWS region
- AWS S3 bucket
Was this page helpful?