Skip to main content

Integrations

Prerequisites for the Illumio Sentinel Solution

These are the prerequisites for installing and using the Illumio Sentinel Solution.

  1. An AWS S3 Bucket and SQS

    • If Illumio provides an S3 bucket, contact Illumio for AWS credentials and the SQS URL.

    • Configure an AWS SQS for the S3 bucket, which is set up to receive events from PCE. For more information, see Configuring a bucket for notifications.

    • Ensure that you have AWS credentials and an SQS URL.

  2. Contact Illumio to get the PCE API username and secret, PCE FQDN, and org ID or access the PCE UI and generate an API key.

  3. A resource group to host all Azure objects.

  4. A Log Analytics workspace.

    Define a Log Analytics workspace in Azure and deploy Sentinel in that workspace.

  5. A Microsoft Entra application

    Define an AAD application to authenticate the Logs Ingestion API. See Create a Microsoft Entra application for information about how to deploy an AAD application. 

  6. Users who deploy this solution in Azure should have enough privileges to create all the resources. They either need to have owner rights or to be contributors with the Role-Based Access Control Administrator and Application Developer roles for Microsoft Entra.

See also: