You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: README.md
+8-8Lines changed: 8 additions & 8 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -4,21 +4,21 @@
4
4
5
5
## Overview
6
6
Lacework FortiCNAPP can integrate with Amazon Security Lake, an S3 data data lake that is based on the [OCSF standard](https://schema.ocsf.io/).
7
-
FortiCNAPP integrates as a data source and provides our real-time security findings. These security findings include software and infrastructure-as-code (IaC) vulnerabilities, cloud resource security misconfigurations, and known and unknown security threat behaviors.
7
+
Lacework FortiCNAPP integrates as a data source and provides our real-time security findings. These security findings include software and infrastructure-as-code (IaC) vulnerabilities, cloud resource security misconfigurations, and known and unknown security threat behaviors.
8
8
9
9
## NOTE:
10
-
You must have a data lake configured in Amazon Security Lake to use this integration. The integration does not provision the data lake, and the event Lambda will fail when attempting to send FortiCNAPP events to the custom S3 data source. Please follow the steps described in the following AWS guide to get started:
10
+
You must have a data lake configured in Amazon Security Lake to use this integration. The integration does not provision the data lake, and the event Lambda will fail when attempting to send Lacework FortiCNAPP events to the custom S3 data source. Please follow the steps described in the following AWS guide to get started:
CloudFormation is used to set up the Lacework integration with Security Lake. The CloudFormation template creates the EventBridge rules, IAM permissions, SNS topic, SQS queue, Lambda event transformation function and the FortiCNAPP outbound security alert channel.
17
+
CloudFormation is used to set up the Lacework integration with Security Lake. The CloudFormation template creates the EventBridge rules, IAM permissions, SNS topic, SQS queue, Lambda event transformation function and the Lacework FortiCNAPP outbound security alert channel.
18
18
19
19
### Prerequisites
20
-
* Subscription to FortiCNAPP. Acquire through [AWS Marketplace listing](https://aws.amazon.com/marketplace/pp/prodview-uv2dct6bigr54?sr=0-1&ref_=beagle&applicationId=AWSMPContessa).
21
-
* Administrator access to a FortiCNAPP instance
20
+
* Subscription to Lacework FortiCNAPP. Acquire through [AWS Marketplace listing](https://aws.amazon.com/marketplace/pp/prodview-uv2dct6bigr54?sr=0-1&ref_=beagle&applicationId=AWSMPContessa).
21
+
* Administrator access to a Lacework FortiCNAPP instance
22
22
*[FortiCNAPP Admin API Key and Secret](https://docs.lacework.com/api/api-access-keys-and-tokens)
23
23
24
24
### Deploy the CloudFormation Template
@@ -36,8 +36,8 @@ CloudFormation is used to set up the Lacework integration with Security Lake. Th
36
36
* Enter the **Security Lake Role ARN**.
37
37
* Enter the **Security Lake Role External ID**.
38
38
* Enter **Your Lacework URL**.
39
-
* If you Lacework instance has the Organization feature enabled, enter the **FortiCNAPP Sub-Account Name**. Otherwise, leave this field blank.
40
-
* Enter your **FortiCNAPP Access Key ID** and **FortiCNAPP Secret Key** that you copied from your API Keys file. See [here](https://docs.lacework.com/console/generate-api-access-keys-and-tokens).
39
+
* If your Lacework instance has the Organization feature enabled, enter the **Lacework Sub-Account Name**. Otherwise, leave this field blank.
40
+
* Enter your **Lacework Access Key ID** and **Lacework Secret Key** that you copied from your API Keys file. See [here](https://docs.lacework.com/console/generate-api-access-keys-and-tokens).
41
41
42
42
3. Click **Next** through to your stack **Review**.
43
43
4. Accept the AWS CloudFormation terms and click **Create stack**.
@@ -60,7 +60,7 @@ To investigate any issues, use the following steps:
60
60
61
61
62
62
#### Security Findings Event Troubleshooting
63
-
If there are issues with FortiCNAPP Security Alerts being transformed to OCSF and Amazon Security Lake, investigate the Lambda function _stack-name_-LaceworkAmazonSecurityLakeEventFunction-_xxxx_. It transforms Lacework Security alerts into OCSF Security Findings format and delivers these in Parquet file format to the Security Lake S3 bucket.
63
+
If there are issues with Lacework FortiCNAPP Security Alerts being transformed to OCSF and Amazon Security Lake, investigate the Lambda function _stack-name_-LaceworkAmazonSecurityLakeEventFunction-_xxxx_. It transforms Lacework Security alerts into OCSF Security Findings format and delivers these in Parquet file format to the Security Lake S3 bucket.
64
64
To investigate any issues, use the following steps:
0 commit comments