Skip to main content

Sumo Logic Notifications By Gmail

sumo-logic-notifications

Version: 1.0
Updated: Aug 13, 2024

Integration with Sumo Logic platform for monitors and Gmail notification.

Actions

  • Assess Alert Status (Scheduled) - Periodically monitor status of a Sumo Logic alert and notify a Gmail user about an unresolved alert.
  • Authorize DO NOT USE IN PLAYBOOK (Enrichment) - Authorize access to Gmail. This should only be run once and not from a playbook.
  • Confirm DO NOT USE IN PLAYBOOK (Enrichment) - Confirm access to Gmail. This should only be run once and not from a playbook.

Sumo Logic Notifications By Gmail configuration

  1. Create an access key and copy the resulting Access ID and Access Key. Store the ID and access key (temporally) into a text editor.

    note

    The ID and key won't be available again once you close the confirmation screen.

  2. Create a new Project in the Developer Console.

  3. In the APIs & Services section, navigate to Credentials and select Create Credentials: https://console.cloud.google.com/apis/api.

  4. Select OAuth Client ID as the credential type and set the following inputs:

    • Application Type. Web Application.
    • Authorized redirect URIs > Add URI. Enter http://localhost/.
      note

      Will only be used to generate a refresh token.

  5. Copy the resulting Client ID and Client Secret Key values, as these will be used later.
    gmail

  6. Navigate to the OAuth Consent Screen section and set the following inputs:

    • App Name
    • User Support Email. Set to an email that you have access to.
    • Developer Contact Information. Set to an email that you have access to.
  7. The following Scopes are needed:

    • https://mail.google.com
    • https://www.googleapis.com/auth/gmail.modify
    • https://www.googleapis.com/auth/gmail.readonly
    • https://www.googleapis.com/auth/admin.directory.user
    • https://www.googleapis.com/auth/gmail.compose
    • https://www.googleapis.com/auth/gmail.send
    • https://www.googleapis.com/auth/gmail.settings.basic
    • https://www.googleapis.com/auth/gmail.settings.sharing
  8. In Cloud SOAR, navigate to Automation > Integrations > Gmail, add a new Resource and provide the following inputs:

    • Client ID (generated in step 4)
    • Client Secret Key (generated in step 4)
  9. Save and close the Resource.

  10. Click and execute the Authorize DO NOT USE IN PLAYBOOK action. If successful, a URL will be returned.
    gmail

  11. Open a new browser tab, and navigate to the URL generated in the previous step.

  12. Provide consent for this developer project to access the Gmail API.

  13. The response to this consent flow is the localhost redirect specified earlier. Copy this URL.

  14. Within this URL, copy the code nested in this URL:

    http://localhost/?code=4/0AbUR2VXXXXFe8kuMTUE4Dkxts4J8mo3\_BkZKxXAcdzXXXXtd9lrjai00pEuG0YXWtWjimg&scope=https://mail.google.com/%20https://www.googleapis.com/auth/gmail.settings.basic

    gmail
  15. In Cloud SOAR, click and run the Confirm DO NOT USE IN PLAYBOOK action, providing the code generated above in the Code input.
    gmail

  16. This will return a JSON result with a "credentials" key. Copy the value of this key, which is a base64-encoded string JSON credential we will use in the next and final step.
    gmail

  17. Paste the base64 string in the "credentials" field of the Integration Resource created in step 12. Save and close the resource window.

External Libraries

Configure Sumo Logic Notifications By Gmail in Automation Service and Cloud SOAR

Before you can use the integration, you must configure it so that the vendor can communicate with Sumo Logic. For general guidance, see Configure Authentication for Integrations.

  1. Access App Central and install the integration.
  2. Select the installed integration in the Integrations page.
    Classic UI. In the main Sumo Logic menu, select Automation and then select Integrations in the left nav bar.
    New UI. In the main Sumo Logic menu, select Automation > Integrations. You can also click the Go To... menu at the top of the screen and select Integrations.
  3. Select the integration.
  4. Hover over the resource name and click the Edit button that appears.
    Edit a resource
  5. In the Add Resource dialog, enter the authentication needed by the resource. When done, click TEST to test the configuration, and click SAVE to save the configuration.
  • Label. The name of the resource.
  • Sumo Logic API URL. URL to the API of the instance (for example, https://api.sumologic.com). Enter the API endpoint URL for your region.
  • Access ID (Sumologic). The access ID that you copied earlier.
  • Access Key (Sumologic). The access key that you copied earlier.
  • Client ID (Gmail). To set up the Client ID, please refer to step 6 .
  • Client Secret Key (Gmail). To set up the Client Secret Key, please refer to step 6.
  • Credentials(Gmail). Retrieve Credentials from the "Confirm DO NOT USE IN PLAYBOOK" Action
    sumo-logic-notifications

Change Log

  • Aug 13, 2024 - First upload
Status
Legal
Privacy Statement
Terms of Use

Copyright © 2025 by Sumo Logic, Inc.