Gartner’s Critical Insights for External Attack Surface Management (EASM) Solutions
This article describes how to set up and use Azure Sentinel. It is a scalable, cloud-native, security information event management (SIEM) and security orchestration automated response (SOAR) solution that integrates with the Cyberpion platform.
Open the Azure portal and select Azure Sentinel.
Select +Add.
Select Create a new workspace.
Fill in the required information and create workspace:
Open the Azure portal and select Azure Sentinel.
Select +Add.
Select the Logs Analytics Workspace that you’ve just created or an existing one you’d like to utilize.
Go to the Cyberpion connector page
Copy the Workspace ID as well as the Primary key.
Select the Logs Analytics Workspace that you’ve just created or an existing one you’d like to utilize.
Log in the Cyberpion platform, navigate to Settings -> Integrations.
Fill in the values copied in the previous steps (primary key & workspace ID).
| Status | Required Action |
| Success | None. |
| INACTIVE_CUSTOMER | The workspace has been deactivated. |
| INVALID_CUSTOMER_ID | Please make sure you entered the correct workspace ID. |
| INVALID_AUTHORIZATION | The service failed to authenticate the request. Verify that the workspace ID and shared key are valid. |
| AZURE_CONNECTION_ERROR | Could not connect to a specific workspace API. This could be because the workspace API is incorrect |
| AZURE_SERVER_ERROR | Azure API returned a server error (5XX). Try again later or contact Cyberpion support if the issue persists |
| UNKNOWN_ERROR | Contact Cyberpion support for assistance |
See the risks you’re exposed to with a vulnerability assessment.
