Webhook and Email Connectors
You can configure a connector in the Alert Logic console to send notifications to any public-facing HTTP endpoint. Connectors allow you to send security data directly to a third-party application in near real time. When you set up a notification and subscribe a webhook or email connector, the connector sends the event to the target URL (as an HTTP POST request) or email address you configured and can send a message or generate an IT service management (ITSM) ticket automatically.
Connectors to your third-party applications increase efficiency by enabling you to automate your workflows. Faster awareness of security events can decrease response teams and improve your security posture.
Access the Connectors feature
To access the Connectors feature, from the navigation menu, click Configure, and then click Connectors.
The process for connecting to a third-party application involves these main steps:
- Create the connector in the Alert Logic console.
- Subscribe your connector to receive Alert Logic security notifications.
Application requirements vary and often require different information. For instructions on how to configure a specific connector, see the Connectors Configuration Guide.
Alert Logic offers connectors in several business categories: Ticketing Webhook, Messaging Webhook, and Universal.
Several choices are available for creating a webhook that can generate ITSM tickets automatically from Alert Logic security notifications:
- Jira—Webhook connector for Atlassian Jira Software
- Jira Service Desk—Webhook connector for Atlassian Jira Service Desk
- ServiceNow—Webhook connector for ServiceNow
If you need to create a webhook connector for a different ticketing system, an experienced DevOps professional can configure the universal webhook or email connector by using information in the ticketing system documentation.
You can configure a webhook to receive Alert Logic security notifications as messages by selecting one of these connectors:
- Microsoft Teams—Webhook connector for Microsoft Teams
- Slack—Webhook connector for Slack
- PagerDuty—Webhook connector for PagerDuty
If you need to create a webhook connector for a different messaging or team collaboration system, an experienced DevOps professional can configure the universal webhook or email connector by using information in the messaging system documentation.
To create a webhook connector for an external system that is not listed or an email connector, an experienced DevOps professional can configure one of the universal connectors:
- Webhook—You can configure this type of connector to send security notifications to any HTTP endpoint. Alert Logic provides a sample payload that you can customize for compatibility with the external system and your security goals.
- Email—You can configure this type of connector to send incident notifications to any web server configured to accept email requests. With this option, the incident payload that Alert Logic sends is not customizable, but you can customize the email subject.
You can view a list of connectors created in your account from the Connectors page. You can also delete and edit existing connectors. For more information, see Manage Connectors.