Sumo Logic Notifications

Version: 1.2
Updated: Mar 4, 2024

Integration with Sumo Logic platform for monitors and Slack Notification.

Actions

• Assess Alert Status (Scheduled) - Periodically monitor status of a Sumo Logic alert and notify a Slack user about unresolved alert.

Sumo Logic Notifications configuration

1. In the main Sumo Logic menu, select your username and then Preferences.
2. From the preferences screen, in the section My Access Keys, click Add Access Key.
   
3. Populate the name and click Create Key.
   
4. Copy the Access ID and Access Key and store them (temporally) into a text editor.
   note

   They won't be available again once you close this screen.

5. Click Done after you copied the Access ID and Access Key.
   

Sumo Logic Notifications in Automation Service and Cloud SOAR

1. Access integrations in the Automation Service or Cloud SOAR.
2. After the list of the integrations appears, search/look for the integration and click on the row.
3. The integration details will appear. Click on the "+" button to add new Resource.
   
4. Populate all the required fields (*) and then click Save.
   • Label. The name of the resource.
   • Sumo Logic API URL. URL to the API of the instance (more info on the URL here: https://help.sumologic.com/APIs).
   • Access ID. The access ID that you copied earlier.
   • Access Key. The access key that you copied earlier.
   • Slack Bot/User OAuth Token. To set up the Slack App, please refer to the documentation on configuring Slack integration within App Central. You'll require a Slack Bot/User OAuth Token.
     

Change Log

• September 22, 2023 - First upload
• October 18, 2023 (v1.1) - Updated Assess Alert Status Action (Updated the Scheduled input to be dynamically set)
• March 4, 2024 (v1.2) - Updated code for compatibility with Python 3.12