Skip to main content

Integrations

Tabs for Custom Deployment

The following sections describe the tabs you will work with when creating a custom deployment.

Basics Tab

The Basics tab is the first tab within Custom deployment that you need to enter information into.

basics-tab.png

Basics Tab

Select or type in the following information:

  1. Enter the Resource group.

  2. Enter the Log Analytics Workspace.

  3. Select the type of function app, which will be either "consumption" or "premium" depending upon event security and Azure policies.

  4. Enter the name of the function app. By default, it is set to "IllumioDataConnector01".

  5. Enter the name of the storage account. By default, it is set to "illumiostorage".

Private networking is set to false by default. See Configure a Private Network for more information.

By default, all types of logs are ingested. This includes audit and flow events.

After you have provided the required information, click Next.

Provide Credentials Tab

The Provide Credentials tab is the second tab within Custom deployment that you need to add information into:

credentials-tab.png

Select or type in the following information:

  1. Enter the AWS credentials, such as the access key, the secret, the region, and the SQS queue URL. If this is an Illumio-provided bucket, reach out to Illumio for details.

  2. Provide the AAD Tenant Id, Client ID, and Secret Key. As mentioned in Prerequisites for the Illumio Sentinel Solution, this information must have been set up before you can complete these steps.

Data Ingestion Config Tab

The Data Ingestion Config tab is the third tab in Custom deployment that you need to enter information into:

data-ingestion-tab.png

Data Ingestion Config tab

Select or type in the following information:

  1. Enter a name for the data collection endpoint if you're creating it for the first time.

  2. Enter a name for the data collection rule if you're creating it for the first time.

  3. Select the preconfigured DCE and DCR only if you are deploying additional functional apps.

Illumio API Config Tab

Note

The Illumio PCE API key needs to have read-only permissions.

The Illumio API Config tab is the fourth tab within Custom deployment that you need to enter information into:

api-tab.png

Select or type in the following information:

  1. API Key

  2. API Secret

  3. FQDN of the PCE, in the scpx.illum.io format. Do not enter "https".

  4. FQDN Port

  5. Org ID

Next, provide the necessary tags and proceed to the deployment. All of the resources that you specified will be deployed.