Cisco DUO Logs / Input

First steps into researching the possibility of ingesting Cisco DUO logs into GL. Looks like I need to go down the API route and wondering if anyone in the community has looked at this, any warnings, thoughts.

Thanks for looking, Paul

1 Like

Hello , the only thing I have found was this, but I havent tried it yet.

1 Like

Hi, Paul
I suggest you take a look at the link below


I was looking into it and started pulling logs. I used the splunk example and modified it for our needs. My goal was to be able to use Telegraf using the exec plugin and executing my script to send the results to graylog. Unfortunately I just dont have the time to continue and maybe this research will help someone else.

GitHub - acl/Duo-to-log: Scripts to pull logs from Duo Security

1 Like

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.