Automox has announced further audit trail capabilities, following the launch of its Audit Trail application programming interface (API) in July, showcasing improved visibility and security information and event management (SIEM) tool interoperability for the Automox platform.
Landon Miles, blogging for Automox, said the updates deliver enhanced audit history functionality and visibility into console usage.
“This allows you to export Audit Trail data into your preferred logging or SIEM tool for further analysis. Soon, you’ll be able to access Audit Trail data directly within the Automox console and quickly filter, search, group and export data to CSV files,” Miles explained.
Automox is building on the Audit Trail API release this month by adding direct access to the features within the Automox console for more visibility and control of IT, he said.
“In yet another security-related initiative from the CISA Secure by Design Pledge, we are very excited to announce the release,” Miles said.
“This release enables security teams and IT administrators to retrieve audit logs from the Automox console and ingest them within their SIEM. Through this API, you can see who’s doing what – and where.”
The Cloud Security Alliance (CSA) awarded Automox its CSA Trustmark as a ‘trusted cloud provider’ in June. The vendor offers a cloud-based automated endpoint patching, updating and deployment platform with remediation and reporting functionality.
A Python script can get users started, according to the vendor, run from a Linux host via a cron job – scheduled via the cron command-line utility for Unix-like systems to run at desired intervals.
The script made available on the blog was designed to grab the latest logs from the API and store them in an AWS S3 bucket where a SIEM can consume them, for instance via Rapid7, Automox said.
Landon wrote also that the Automox Worklets catalogue was also continuing to expand, including automation scripts to run on all endpoints, automating configuration, vulnerability remediation and application management across Windows, macOS and Linux estates.
,){kind=link}