Supported OS Linux Windows Mac OS

marketplace
インテグレーションバージョン2.1.1
このページは日本語には対応しておりません。随時翻訳に取り組んでいます。
翻訳に関してご質問やご意見ございましたら、お気軽にご連絡ください

Overview

Netskope is a cloud security platform that provides security solutions to manage and secure cloud-based applications and data. Several features include cloud access security broker (CASB), data loss prevention (DLP), threat protection, and web security.

This integration monitors alerts triggered in Netskope as well as events generated for infrastructure, network, connection, audit, application, and incident. It also helps users visualize the alerts and events generated in Netskope by using various data-rich dashboards available out-of-the-box.

This integration includes the following Datadog Cloud SIEM detection rules for enhanced monitoring and security:

  1. Netskope received DLP alerts for multiple blocked actions within one hour
  2. Netskope observed large file transfer activity
  3. Netskope detected low confidence cloud application interaction
  4. Netskope detected multiple policy violations by a single user

Note: To use the out-of-the-box detection rules, the relevant integration must be installed in Datadog, and Cloud SIEM must be enabled.

Data Collected

Metrics

cds.netskope.application.bytes_transferred.client_bytes
(gauge)
Application bytes sent from client side.
Shown as byte
cds.netskope.application.bytes_transferred.server_bytes
(gauge)
Application bytes received from server side.
Shown as byte
cds.netskope.connection_cci.cci
(gauge)
Cloud confidence index.
Shown as occurrence
cds.netskope.network.client_bytes
(gauge)
Network bytes sent from client side.
Shown as byte
cds.netskope.network.server_bytes
(gauge)
Network bytes received from server side.
Shown as byte
cds.netskope.network.client_packets
(gauge)
Network packets sent from client side.
Shown as occurrence
cds.netskope.network.server_packets
(gauge)
Network packets received from server side.
Shown as occurrence
cds.netskope.network.session_duration
(gauge)
User network session duration.
Shown as second

Service Checks

cds.netskope.status

Returns CRITICAL if the user configurations are invalid or server authentication fails. Returns OK otherwise.

Statuses: ok, critical

Support

For support or feature requests, contact Crest Data through the following channels:


This application is made available through the Marketplace and is supported by a Datadog Technology Partner. Click Here to purchase this application.