Skip to main content

Configure a Hosted Collector and Source

note

The maximum number of Collectors allowed per organization is 10,000.

Step 1: Configure Hosted Collector

Steps to configure a Hosted Collector:

  1. In Sumo Logic, select Manage Data > Collection > Collection.
  2. Click Add Collector.
  3. Click Hosted Collector.
  4. Provide a Name for the Collector. Description is optional.
  5. Category. Enter any string to tag the logs collected from this Collector. This Source Category value is stored in a searchable metadata field called _sourceCategory. See our Best Practices: Good and Bad Source Categories.
  6. Click the +Add Field link in the Fields section. Define the fields you want to associate, each field needs a name (key) and value.
    • green check circle.png A green circle with a check mark is shown when the field exists in the Fields table schema.
    • orange exclamation point.png An orange triangle with an exclamation point is shown when the field doesn't exist in the Fields table schema. In this case, an option to automatically add the nonexistent fields to the Fields table schema is provided. If a field is sent to Sumo that does not exist in the Fields schema it is ignored, known as dropped.
  7. Assign to a Budget allows you to assign an ingest budget to the Collector. The dropdown displays your ingest budgets in the following format: <budget name> (<field value>) (<allocated capacity>)
  8. Time Zone. Set the default time zone when it is not extracted from the log timestamp. Time zone settings on Sources override a Collector time zone setting.
  9. Review your input and when finished click Save.
    Add hosted collector.png
  10. After the Collector has been set up, it appears on the Collection page as a Hosted Collector.
    Collector-types-hosted

Step 2: Configure a Source

Once you've configured your Hosted Collector, the next step is to configure a Source(s). 

Thumbnail icon

Amazon Sources

Collect data from a variety of AWS products.

Thumbnail icon

Microsoft Sources

Collect data from Microsoft Office 365 Audit.

Thumbnail icon

Google Sources

Collect data from Google products such as GCP.

Cloud icon

Cloud-to-Cloud Integration Framework Sources

Collect logs and events directly from your SaaS and Cloud platforms.

Cloud icon

Cloud Syslog Sources

Configure a syslog client to send RFC 5424-compliant messages to Sumo.

Thumbnail icon

HTTP Sources

Receive logs, metrics, traces, and OTLP data uploaded to a unique URL generated for the Source.

Status
Legal
Privacy Statement
Terms of Use

Copyright © 2024 by Sumo Logic, Inc.