Supported Cortex XSOAR versions: 6.8.0 and later.
Navigate to Settings > Integrations > Servers & Services.
Search for Mimecast Event Collector.
Click Add instance to create and configure a new integration instance.
Parameter Description Required Base URL True Application ID True Application Key True Access Key True Secret Key True First fetch timestamp (<number> <time unit>, for example, 12 hours, 7 days, 3 months, 1 year) This parameter is used only for the Audit logs configuration. SIEM logs always set to "7 days ago". For additional information, review the pack README. True Trust any certificate (not secure) False Use system proxy settings False
Click Test to validate the URLs, token, and connection.
This integration is collecting events from 2 end points.
You can execute these commands from the Cortex XSOAR CLI, as part of an automation, or in a playbook. After you successfully execute a command, a DBot message appears in the War Room with the command details.
Manual command to fetch events and display them.
|should_push_events||Set this argument to True in order to create events, otherwise the command will only display them. Possible values are: True, False. Default is False.||Required|
There is no context output for this command.