1Password (Serverless)

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊

Back to Connectors Index

Attribute Value
Connector ID 1PasswordCCPDefinition
Publisher 1Password
Used in Solutions 1Password
Collection Method CCF
Connector Definition Files 1Password_DataConnectorDefinition.json
DCR Definition Files 1Password_DCR.json
CCF Configuration 1Password_PollingConfig.json
CCF Capabilities APIKey, Paging, POST
Ingestion API Log Ingestion APISibling ARM template declares DCR / Log Ingestion API resources
Microsoft Learn View on Learn

The 1Password CCP connector allows the user to ingest 1Password Audit, Signin & ItemUsage events into Microsoft Sentinel.

Tables Ingested

This connector ingests data into the following tables:

Table Transformations Ingestion API Lake-Only
OnePasswordEventLogs_CL

💡 Tip: Tables with Ingestion API support allow data ingestion via the Azure Monitor Data Collector API, which also enables custom transformations during ingestion.

Permissions

Resource Provider Permissions:

Custom Permissions:

Setup Instructions

⚠️ Note: These instructions were automatically generated from the connector's user interface definition file using AI and may not be fully accurate. Please verify all configuration steps in the Microsoft Sentinel portal.

1. STEP 1 - Create a 1Password API token:

Follow the 1Password documentation for guidance on this step.

2. STEP 2 - Choose the correct base URL:

There are multiple 1Password servers which might host your events. The correct server depends on your license and region. Follow the 1Password documentation to choose the correct server. Input the base URL as displayed by the documentation (including 'https://' and without a trailing '/').

3. STEP 3 - Enter your 1Password Details:

Enter the 1Password base URL & API Token below:

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊

Back to Connectors Index