As per research, JIRA cloud logs cannot be directly forwarded to SIEM. Therefore, can you please confirm this thing and if it’s possible then step by step guidance is required.
@JIRA ADMIN I believe you are referring to audit logs as per this documentation, is this correct?
https://support.atlassian.com/organization-administration/docs/track-organization-activities-from-the-audit-log/
No, there is no forward to SIEM - but there is some documentation about an export option you are offered.
Please note the following sentence over there: Audit logging is available when you subscribe to Atlassian Access.
Probably however you are interested rather in the activities going on for Jira configuration itself?
The documentation for that is here: https://support.atlassian.com/jira-cloud-administration/docs/audit-activities-in-jira-applications/
And at least you can access them via REST API - https://developer.atlassian.com/cloud/jira/platform/rest/v3/api-group-audit-records/#api-group-audit-records
Doing so you could forward them to a SIEM system.
Given the assumption, though, it is what you are looking for.
Regards,
Daniel
Atlassian Cloud is a service, not your server. If you use Cloud, you need to see it as a service, rather than something you do for your people.
Stop thinking "logs", you have chosen an external service, you need to embrace "service".
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
There is no direct access to logs in Jira Cloud. However you can manually access audit logs.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.