Integrating CrowdStrike Falcon Next-Gen SIEM with Secret Server

Third-party vendors create and maintain this integration. Delinea does not guarantee that the integration will work properly or that it respects Delinea product limitations. Delinea has not reviewed this integration and Delinea Support staff can only assist with the Delinea side of setup.

CrowdStrike Falcon Next-Gen SIEM is CrowdStrike's modern Security Information and Event Management (SIEM) solution. It aims to revolutionize threat detection, investigation, and response by bringing together security depth and breadth in one unified platform, extending CrowdStrike's EDR, threat intelligence, and expert capabilities.

CrowdStrike Falcon Next-Gen SIEM (often associated with LogScale under the hood) includes a standardized event parsing framework that ingests and SYSLOG normalizes security event data from various sources. As part of this extensible SIEM framework, Delinea Secret Server is recognized as a distinct event source vendor, enabling its logs and audit events to be parsed, categorized, and correlated alongside native CrowdStrike event streams.

This integration works with Secret Server Cloud, Secret Server On-Premises, and Secret Server on the Delinea Platform.

To learn more about this integration, see Vendor Guidelines and event.module guidelines in the CrowdStrike Developer Center.