CrowdStrike Falcon
The JSA DSM for CrowdStrike Falcon collects Syslog events that are forwarded by a Falcon SIEM Connector.
To integrate CrowdStrike Falcon with JSA, complete the following steps:
If automatic updates are not enabled, RPMs are available for download from the Juniper Downloads. Download and install the most recent version of the following RPMs on your JSA console:
DSM Common RPM
CrowdStrike Falcon DSM RPM
Configure your Falcon SIEM connector to send events to JSA. For more information, see Configuring CrowdStrike Falcon to Communicate with JSA.
-
If JSA does not automatically detect the log source, add a CrowdStrike Falcon log source on the JSA console. For more information, see Syslog Log Source Parameters for CrowdStrike Falcon.