This guide explains how to implement a webhook that can send Cmd data directly to Sumo Logic.
Prerequisites
Before an integration can be added to a project, a global admin must enable it.
After that, a manager or admin can add the integration to a project.
Overview
Sumo Logic setup
Log in to Sumo Logic.
Go to Manage Data > Collection.
Find the Collector called “HTTP”, and click Add Source:
4. On the next screen, select HTTP Logs & Metrics:
5. Enter a Name, Source Host, and Source Category to help organize your Cmd
data within Sumo Logic, then click Save.
6. Save the HTTP Source Address for later, then click Ok.
Cmd setup
Log in to Cmd.
Click the current project’s name at the top right to open the dropdown menu.
Select Project & app settings.
From the left side menu, select Integrations preferences.
Select Webhook, then Add Integration:
6. Enter a Name to identify the webhook within Cmd, then enter the HTTP Source
Address from earlier into the ‘Webhook URL’ field, and click the CQL Properties
to send box to select the data this integration will send to Sumo Logic:
To learn about the data you can send, see the CQL Webhook properties glossary and the custom webhooks overview.
7. Click Save.
Webhook testing
Your integration should be ready. To test it:
Create a new trigger which you can fire for testing.
Add the action ‘Send custom webhook alert’, and select the name of your new Sumo Logic webhook integration.
SSH into a server where the trigger is active and cause it to fire.
In Sumo Logic, search for the source name and collector name you defined above to find your alert from Cmd:
Related resources: