JumpCloud collector
Configuration requirements
To run this collector, there are some configurations detailed below that you need to consider.
Configuration | Details |
---|---|
JumpCloud credentials | It is necessary to have your credentials so you can configure the collector. |
API token | It is necessary to have API Token. |
API Key | You need to save your API key. |
More information
Refer to the Vendor setup section to know more about these configurations.
Overview
JumpCloud works as a directory-as-a-service software solution that is designed to manage and connect hundreds of users to their respective applications, files, networks, and systems.
Directory insights allow you to read event logs, view activity in your directory, and monitor user authentications to the console, RADIUS, LDAP, and SSO apps. Directory insights analyze the audit trails that lead to critical events so you know what, where, how, and who of your directory activities.
Devo collector features
Feature | Details |
---|---|
Allow parallel downloading ( |
|
Running environments |
|
Populated Devo events |
|
Flattening preprocessing |
|
Data sources
Data source | Description | API endpoint | Collector service name | Devo table | Available from release |
---|---|---|---|---|---|
directory | Logs on activity in the Portal, including admin changes in the directory and admin/user authentications to the Portal. |
|
|
|
|
systems | Logs about user authentications to systems including agent related events on lockout, password changes, and File Disk Encryption key updates. |
|
|
|
|
sso | Logs on user authentications to SAML applications. |
|
|
|
|
radius | Logs on user authentications to RADIUS used for wifi and VPNs. |
|
|
|
|
ldap | Logs about user authentications to LDAP, including LDAP bind and search events types. |
|
|
|
|
mdm | Logs about MDM command results. |
|
|
|
|
All events | Logs about all events. |
|
| It has autocategorization, it depends on the type of event:
|
|
Flattening preprocessing
Data source | Collector service | Optional | Flattening details |
---|---|---|---|
Source | Service |
| Flattening steps |
Vendor setup
There are some requirements to set up this collector:
Generate API Token
Login into JumpCloud.
In the Administration Center go to the username drop-down in the upper right corner.
Retrieve your API key from the API settings.
API Considerations
This API key is associated with the currently logged-in administrator. The API keys will be different for other administrators.
Keep the API Key
Keep this API key secret as it grants full access to any data accessible via your JumpCloud console account. You can also reset your API key in the same location in the JumpCloud Admin Console.
Minimum configuration required for basic pulling
Although this collector supports advanced configuration, the fields required to retrieve data with basic configuration are defined below.
This minimum configuration refers exclusively to those specific parameters of this integration. There are more required parameters related to the generic behavior of the collector. Check setting sections for details.
Setting | Details |
---|---|
| Token for use JumpCloud API |
Accepted authentication methods
Authentication method | Api key |
---|---|
Api key | REQUIRED |
Run the collector
Once the data source is configured, you can either send us the required information if you want us to host and manage the collector for you (Cloud collector), or deploy and host the collector in your own machine using a Docker image (On-premise collector).
Collector services detail
This section is intended to explain how to proceed with specific actions for services.
Events service
Collector operations
This section is intended to explain how to proceed with specific operations of this collector.
Change log for v1.x.x
Release | Released on | Release type | Details | Recommendations |
---|---|---|---|---|
| Nov 4, 2022 | NEW FEATURE
| New features: Released first version of Jumpcloud collector with the following services:
|
|