Saviynt Enterprise Identity Cloud

This Integration is part of the Saviynt Enterprise Identity Cloud Pack.

Supported versions

Supported Cortex XSOAR versions: 8.4.0 and later.

Collector for Saviynt Enterprise Identity Cloud (EIC) audit logs using Analytics Runtime Control V2. This integration was tested with Saviynt EIC API Reference for Amsterdam GA Release (API v5).

Configure Saviynt EIC Event Collector in Cortex

Parameter	Description	Required
Server URL	The Saviynt EIC server URL (e.g., https://your-tenant.saviyntcloud.com).	True
Username	The username for authenticating with the Saviynt EIC API.	True
Password	The password for authenticating with the Saviynt EIC API.	True
Analytics Name	The name of the Analytics Runtime Control to fetch events from. This value must match an existing Analytics Record configured in Saviynt. Default is SIEMAuditLogs.	False
Maximum number of events per fetch	The maximum number of events to fetch per interval. Default is 30000.	False
Trust any certificate (not secure)	When selected, certificates are not checked. Not recommended for production environments.	False
Events Fetch Interval	The interval in minutes between event fetches. Default is 1 minute.	False
Use system proxy settings	When selected, uses the system proxy settings to connect to the Saviynt EIC API.	False

Commands

You can execute these commands from the CLI, as part of an automation, or in a playbook. After you successfully execute a command, a DBot message appears in the War Room with the command details.

saviynt-eic-get-events

---

Gets events from Saviynt EIC.

Base Command

saviynt-eic-get-events

Input

Argument Name	Description	Required
should_push_events	If true, the command creates events, otherwise, it only displays them. Possible values are: true, false. Default is false.	Required
limit	Maximum number of results to return (max 10000).	Required
time_frame	Time frame in minutes back from now to query.	Optional
offset	Offset for paging.	Optional

Context Output

There is no context output for this command.