Cisco Email Threat Defense (ETD)

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊

Back to Connectors Index

Attribute Value
Connector ID CiscoETDConnectorDefinition
Publisher Cisco
Used in Solutions Cisco ETD
Collection Method CCF
Connector Definition Files CiscoETD_connectorDefinition.json
DCR Definition Files CiscoETD_DCR.json
CCF Configuration CiscoETD_PollerConfig.json
CCF Capabilities JwtToken, POST, MvExpand, Nested

The Cisco Email Threat Defense (ETD) data connector provides the capability to ingest message events from Cisco ETD into Microsoft Sentinel using the Log Export API.

Tables Ingested

This connector ingests data into the following tables:

Table Transformations Ingestion API Lake-Only
CiscoETDv2_CL ? ?

💡 Tip: Tables with Ingestion API support allow data ingestion via the Azure Monitor Data Collector API, which also enables custom transformations during ingestion.

Permissions

Resource Provider Permissions:

Custom Permissions:

Setup Instructions

⚠️ Note: These instructions were automatically generated from the connector's user interface definition file using AI and may not be fully accurate. Please verify all configuration steps in the Microsoft Sentinel portal.

1. Connect to Cisco ETD API

Provide your Cisco ETD API endpoint, Client ID, Client Secret, and API Key. These credentials can be obtained from your Cisco ETD administrator or through the Cisco ETD management console.

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊

Back to Connectors Index