Merge branch 'main' into JV0812-patch-2

Author: JV0812

blog-service/2024-10-30-apps.md

@@ -0,0 +1,38 @@
+---
+title: App Guides - October Release (Apps)
+image: https://help.sumologic.com/img/sumo-square.png
+keywords:
+  - apps
+  - releases-notes
+hide_table_of_contents: true  
+---
+
+import useBaseUrl from '@docusaurus/useBaseUrl';
+
+<a href="https://help.sumologic.com/release-notes-service/rss.xml"><img src={useBaseUrl('img/release-notes/rss-orange2.png')} alt="icon" width="50"/></a>
+
+### New release
+
+We’re excited to announce the release of new Azure Database for MySQL, Azure App Service Plan, Amazon Bedrock, Amazon OpenSearch, and Cosmos DB for NoSQL apps for Sumo Logic.
+
+- **Azure Database for MySQL**. Azure Database for MySQL is a relational database service in the Microsoft cloud based on the MySQL Community Edition database engine. This integration helps in identifying slow queries, tracking database-level activity, including connection, administration, data definition language (DDL), and data manipulation language (DML) events. [Learn more](/docs/integrations/microsoft-azure/azure-database-for-mysql).
+- **Azure App Service Plan**. Azure App Service Plan defines a set of compute resources for a app service to run. This integration helps in monitoring memory, CPU, incoming and outgoing bandwidth, number of sockets and their states across all the instances of the plan. [Learn more](/docs/integrations/microsoft-azure/azure-app-service-plan).
+- **Amazon Bedrock**. Amazon Bedrock is a fully managed service that offers a choice of high-performing foundation models (FMs) from leading AI companies like AI21 Labs, Anthropic, Cohere, Meta, Mistral AI, Stability AI, and Amazon through a single API, along with a broad set of capabilities you need to build generative AI applications with security, privacy, and responsible AI. [Learn more](/docs/integrations/amazon-aws/amazon-bedrock).
+- **Amazon OpenSearch**. Amazon OpenSearch Service is a managed service that makes it easy to deploy, operate, and scale OpenSearch clusters in the AWS Cloud. An OpenSearch Service domain is synonymous with an OpenSearch cluster. Domains are clusters with the settings, instance types, instance counts, and storage resources that you specify. [Learn more](/docs/integrations/amazon-aws/amazon-opensearch).
+- **Azure Cosmos DB for NoSQL**. Azure Cosmos DB is a fully managed NoSQL and relational database for modern app development offering single-digit millisecond response times, automatic and instant scalability, along with guaranteed speed at any scale. This integration helps in monitoring the overall performance, failures, capacity, and operational health of all your Azure Cosmos DB resources. [Learn more](/docs/integrations/microsoft-azure/azure-cosmos-db).
+
+### Enhancements 
+
+We're excited to announce the release of below listed enhancements for the Sumo Logic apps:
+
+- **Added Monitors in OpenTelemetry apps**. ActiveMQ - OpenTelemetry, Docker - OpenTelemetry, Elasticsearch - OpenTelemetry, JMX - OpenTelemetry, Kafka - OpenTelemetry, Linux - OpenTelemetry, macOS - OpenTelemetry, MySQL - OpenTelemetry, Nginx - OpenTelemetry, PostgreSQL - OpenTelemetry, SQL Server - OpenTelemetry, Windows 2012+ - OpenTelemetry apps are updated with new monitors.
+- **Classic Apps to Next-Gen Apps Migration**. [Tracing - Application Services Health](/docs/apm/traces/tracing-dashboards/) and [Real User Monitoring](/docs/apm/real-user-monitoring/dashboards/) apps are migrated from [Classic Apps (Legacy)](/docs/get-started/apps-integrations/#classic-apps-legacy) to [Next-Gen Apps](/docs/get-started/apps-integrations/#next-gen-apps).
+- **Oracle - OpenTelemetry**. Updated the collection process to fetch metrics and added new **Oracle - Performance Details** metrics based dashboards. These new dashboards will help monitor session, process, and transaction count of Oracle Database instance.
+
+### Bug Fix
+
+Minor *query* fixes in the below [Classic Apps (Legacy)](/docs/get-started/apps-integrations/#classic-apps-legacy):
+
+- Amazon VPC Flow - Cloud Security Monitoring and Analytics
+- PCI Compliance for AWS CloudTrai
+

blog-service/2024-11-05-alerts.md

@@ -0,0 +1,23 @@
+---
+title: AI-Driven Alerts for Metrics Anomalies (Monitors)
+image: https://help.sumologic.com/img/sumo-square.png
+keywords:
+  - metrics
+  - monitors
+  - alerts
+  - anomalies
+  - ai
+hide_table_of_contents: true  
+---
+
+import useBaseUrl from '@docusaurus/useBaseUrl';
+
+<a href="https://help.sumologic.com/release-notes-service/rss.xml"><img src={useBaseUrl('img/release-notes/rss-orange2.png')} alt="icon" width="50"/></a>
+
+We're excited to announce the general availability of AI-driven alerts for metrics anomalies, extending our AI-driven alerting capabilities to include metrics-based monitors. This new feature aims to reduce alert fatigue and accelerate incident resolution through the use of automated playbooks. [Learn more](/docs/alerts/monitors/create-monitor).
+
+### Key features
+
+* **Advanced anomaly detection**. Leverages 30 days of historical metrics data to establish baselines and identify critical anomalies.
+* **Customizable detection**. Allows configuration based on specific criteria, such as detecting multiple anomalies within a defined time window.
+* **Playbook integration**. Streamlines diagnosis and recovery by automating responses through integrated playbooks.

docs/cse/get-started-with-cloud-siem/insight-generation-process.md

@@ -87,7 +87,7 @@ The severities of the `RDP Brute Force Attempt bad` and the `RDP Brute Force At
 
 By default, when an entity’s Activity Score exceeds the threshold of 12, Cloud SIEM generates an Insight on the entity. Like the detection period, you can [configure a different Activity Score threshold value](/docs/cse/records-signals-entities-insights/set-insight-generation-window-threshold) for Insight generation. When Cloud SIEM creates an Insight on an Entity, it resets the Entity’s Activity Score to 0.
 
-After Cloud SIEM fires a particular Signal on a particular Entity, it suppresses Signals for that Signal-Entity combination for 12 to 24 hours. For more information, see [Redundant Signal suppression](#redundant-signal-suppression), below. 
+After Cloud SIEM fires a particular Signal on a particular Entity, it suppresses Signals for that Signal-Entity combination for a time to prevent redundant Signals. For more information, see [Redundant Signal suppression](#redundant-signal-suppression), below.
 
 ### Example of an Entity that has exceeded Activity Score threshold
 

docs/cse/sensors/network-sensor-end-of-life.md

@@ -0,0 +1,28 @@
+---
+id: network-sensor-end-of-life
+title: Cloud SIEM Network Sensor End-of-Life
+description: Cloud SIEM Network Sensor has reached its end-of-life and will no longer be supported.
+---
+
+<head>
+ <meta name="robots" content="noindex" />
+</head>
+
+import useBaseUrl from '@docusaurus/useBaseUrl';
+
+At Sumo Logic, we pride ourselves on being a leading SaaS log analytics company for observability and security solutions. Our strategic focus centers on delivering cloud-based solutions, as we firmly believe that SaaS represents the most effective means to deliver substantial value and a seamless experience to our customer base.
+
+The Sumo Logic Product Team is discontinuing our on-premise network sensor feature for Sumo Logic Cloud SIEM. This end-of-life notification for Sumo Logic's network sensor means the feature will no longer receive support or updates based on the timelines listed below. We believe this to be the best course of action to keep our development focus on delivering world class detection and response capabilities.
+
+We fully recognize that this decision may have implications for your business operations, and we are committed to planning with you and your security team to minimize disruptions. We fully support a customer or partner managed [Zeek network sensor](/docs/cse/sensors/ingest-zeek-logs/) as a data source for our Cloud SIEM product that will provide equivalent monitoring of your network.
+
+We're confident that our highly scalable, cloud-native security solutions can continue to support your security operations. Let's discuss how we can help you achieve your security goals.
+
+If you have any questions, please don't hesitate to reach out to your Sumo Logic Account team or [open a support ticket](https://support.sumologic.com/support/s/) with our Customer Support Team. We're happy to help.
+
+| Milestone | Definition | Date |
+| :-- | :-- | :-- |
+| End-of-life announcement | The date this feature is announced as end-of-life. | November 8, 2024 |
+| End of software release | The last date that Sumo Logic may release any final software maintenance releases or bug fixes. After this date, Sumo Logic will no longer develop, repair, maintain, or test product software. | November 8, 2024 |
+| Last date of support | The last date to receive applicable support for the feature as entitled by active support contracts or by applicable warrant terms and conditIons. After this date, all support services for this feature are unavailable and the feature becomes obsolete. | January 31, 2025 |
+