Skip to main content

Proofpoint Email Security Event Collector

This Integration is part of the Proofpoint Email Security Pack.#

Supported versions

Supported Cortex XSOAR versions: 6.9.0 and later.

Collects events for Proofpoint using the streaming API. This integration was integrated and tested Proofpoint Email Security.

Configure Proofpoint Email Security Event Collector on Cortex XSOAR#

  1. Navigate to Settings > Integrations > Servers & Services.

  2. Search for Proofpoint Email Security Event Collector.

  3. Click Add instance to create and configure a new integration instance.

    ParameterRequired
    Server HostTrue
    Cluster IDTrue
    API keyTrue
    Fetch interval in secondsTrue
    Use system proxy settingsFalse
  4. Select Long running instance.

  5. Click Test to validate the URLs, token, and connection.

Commands#

proofpoint-es-get-last-run-results#


Retrieves the results of a connection attempt to Proofpoint, indicating whether it was successful or failed and why. If event fetching has been initiated, this command provides the results of the most recent fetch attempt.