I was unable to find suitable documentation to import Okta SIEM logs in to Graylog (without Enterprise). I have created that documentation and thought I would share it with everyone:
Hopefully it helps! Let me know if you have any questions.
What’s covered:
- Export Okta SIEM logs using SumoJanus
- Import via Graylog Sidecar
- Field extraction
- Dashboard Example