CITRIX SECURITY ANALYTICS
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Connector ID | Citrix |
| Publisher | CITRIX |
| Used in Solutions | Citrix Analytics for Security |
| Collection Method | REST Pull API |
| Connector Definition Files | CitrixSecurityAnalytics.json |
| Ingestion API | HTTP Data Collector API — Connector definition requires workspace key (SharedKey pattern) |
| Custom Log V1 Tables | Yes 🔶 — ingests into tables with type-suffixed columns |
Citrix Analytics (Security) integration with Microsoft Sentinel helps you to export data analyzed for risky events from Citrix Analytics (Security) into Microsoft Sentinel environment. You can create custom dashboards, analyze data from other sources along with that from Citrix Analytics (Security) and create custom workflows using Logic Apps to monitor and mitigate security events.
Tables Ingested
This connector ingests data into the following tables:
| Table | Transformations | Ingestion API | Lake-Only |
|---|---|---|---|
CitrixAnalytics_indicatorEventDetails_CL 🔶 |
? | ✓ | ? |
CitrixAnalytics_indicatorSummary_CL 🔶 |
? | ✓ | ? |
CitrixAnalytics_riskScoreChange_CL 🔶 |
? | ✓ | ? |
CitrixAnalytics_userProfile_CL 🔶 |
? | ✓ | ? |
💡 Tip: Tables with Ingestion API support allow data ingestion via the Azure Monitor Data Collector API, which also enables custom transformations during ingestion.
Permissions
Resource Provider Permissions: - Workspace (Workspace): read and write permissions are required. - Keys (Workspace): read permissions to shared keys for the workspace are required. See the documentation to learn more about workspace keys.
Custom Permissions: - Licensing: Entitlements to Citrix Security Analytics in Citrix Cloud. Please review Citrix Tool License Agreement.
Setup Instructions
⚠️ Note: These instructions were automatically generated from the connector's user interface definition file using AI and may not be fully accurate. Please verify all configuration steps in the Microsoft Sentinel portal.
To get access to this capability and the configuration steps on Citrix Analytics, please visit: Connect Citrix to Microsoft Sentinel.
- Workspace ID: WorkspaceId
Note: The value above is dynamically provided when these instructions are presented within Microsoft Sentinel. - Primary Key:
PrimaryKeyNote: The value above is dynamically provided when these instructions are presented within Microsoft Sentinel.
Additional Documentation
📄 Source: Citrix Analytics for Security\Data Connectors\CitrixSecurityAnalyticsLicense.md
Use of this Citrix Workbook is subject to the Citrix license covering the specific edition of the Citrix product with which you will be using this software. Citrix’s standard end-user license agreement (EULA) for its on-premises software and hardware offerings and its standard end-user service agreement (EUSA) for its Citrix Cloud and other SaaS offerings are available at https://www.citrix.com/buy/licensing/agreements.html. Your use of this software is limited to use in connection with the Citrix product(s) to which you are licensed. Certain third-party software may be provided with this software that is subject to separate license conditions. The licenses are located in the third-party licenses file accompanying this component or in the corresponding license files available at www.citrix.com .
Citrix and other marks are trademarks and/or registered trademarks of Citrix Systems, Inc. in the U.S. and other countries.
Last Modified: 2021-06-24
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊