File Sumo

Posted : admin | On 30-04-2021



SUMO is a microscopic, multi-modal traffic simulation. A free file archiver for extremely high compression KeePass. A lightweight and easy-to-use password manager Apache OpenOffice. The free and Open Source productivity suite About Site Status @sfnetops. SUMo (S oftware U pdate Mo nitor) keeps your PC up-to-date & safe by using the most recent version of your favorite software! Unlike built-in auto update features, SUMo tells you if updates are available before you need to use your software. Original file ‎ (SVG file, nominally 484 × 226 pixels, file size: 7 KB) This is a file from the Wikimedia Commons. Information from its description page there is shown below. Use this query to extract fields from a tab delimited log file. You have to manually specify the tab character for the delim value. sourceCategory=sumo/zscaler split raw delim=' ' extract 1 as Column1, 2 as dlpeng, 3 as cat. Which produces this result: Alternatively, you can use the parse operator to extract fields from a tab delimited log.

Size of this JPG preview of this WEBM file: 800 × 450 pixels. Other resolutions: 320 × 180 pixels | 640 × 360 pixels | 1,024 × 576 pixels | 1,280 × 720 pixels | 1,920 × 1,080 pixels.

Original file ‎(WebM audio/video file, VP8/Vorbis, length 26 s, 1,920 × 1,080 pixels, 22.86 Mbps overall)

Summary

Description
Deutsch: Sumo-Kampf im Kokugikan in Tokio, Japan.
English: Sumo fight at the Kokugikan in Tokyo, Japan.
Date
SourceOwn work
AuthorElHeineken

Licensing

File Somon La Cuptor

I, the copyright holder of this work, hereby publish it under the following license:

This file is licensed under the Creative CommonsAttribution-Share Alike 4.0 International license.
You are free:
  • to share – to copy, distribute and transmit the work
  • to remix – to adapt the work
Under the following conditions:
  • attribution – You must give appropriate credit, provide a link to the license, and indicate if changes were made. You may do so in any reasonable manner, but not in any way that suggests the licensor endorses you or your use.
  • share alike – If you remix, transform, or build upon the material, you must distribute your contributions under the same or compatible license as the original.

Captions

Add a one-line explanation of what this file represents
'}},'text/plain':{'en':{':'creator'}}},'{'value':{'entity-type':'property','numeric-id':2093,'id':'P2093'},'type':'wikibase-entityid'}':{'text/html':{'en':{':'author name string</a>'}},'text/plain':{'en':{':'author name string'}}},'{'value':'ElHeineken','type':'string'}':{'text/html':{'en':{'P2093':'ElHeineken','P4174':'ElHeineken</a>'}},'text/plain':{'en':{'P2093':'ElHeineken','P4174':'ElHeineken'}}},'{'value':{'entity-type':'property','numeric-id':4174,'id':'P4174'},'type':'wikibase-entityid'}':{'text/html':{'en':{':'Wikimedia username</a>'}},'text/plain':{'en':{':'Wikimedia username'}}},'{'value':{'entity-type':'property','numeric-id':2699,'id':'P2699'},'type':'wikibase-entityid'}':{'text/html':{'en':{':'URL</a>'}},'text/plain':{'en':{':'URL'}}},'{'value':'http://commons.wikimedia.org/wiki/User:ElHeineken','type':'string'}':{'text/html':{'en':{'P2699':'http://commons.wikimedia.org/wiki/User:ElHeineken</a>'}},'text/plain':{'en':{'P2699':'http://commons.wikimedia.org/wiki/User:ElHeineken'}}}}'>
URL: http://commons.wikimedia.org/wiki/User:ElHeineken
'}},'text/plain':{'en':{':'copyright status'}}},'{'value':{'entity-type':'item','numeric-id':50423863,'id':'Q50423863'},'type':'wikibase-entityid'}':{'text/html':{'en':{'P6216':'copyrighted</a>'}},'text/plain':{'en':{'P6216':'copyrighted'}}}}'>
'}},'text/plain':{'en':{':'copyright license'}}},'{'value':{'entity-type':'item','numeric-id':18199165,'id':'Q18199165'},'type':'wikibase-entityid'}':{'text/html':{'en':{'P275':'Creative Commons Attribution-ShareAlike 4.0 International</a>'}},'text/plain':{'en':{'P275':'Creative Commons Attribution-ShareAlike 4.0 International'}}}}'>
'}},'text/plain':{'en':{':'inception'}}},'{'value':{'time':'+2014-09-21T00:00:00Z','timezone':0,'before':0,'after':0,'precision':11,'calendarmodel':'http://www.wikidata.org/entity/Q1985727'},'type':'time'}':{'text/html':{'en':{'P571':'21 September 2014'}},'text/plain':{'en':{'P571':'21 September 2014'}}}}'>
'}},'text/plain':{'en':{':'source of file'}}},'{'value':{'entity-type':'item','numeric-id':66458942,'id':'Q66458942'},'type':'wikibase-entityid'}':{'text/html':{'en':{'P7482':'original creation by uploader</a>'}},'text/plain':{'en':{'P7482':'original creation by uploader'}}}}'>

File history

Click on a date/time to view the file as it appeared at that time.

Date/TimeThumbnailDimensionsUserComment
current19:25, 7 January 201826 s, 1,920 × 1,080 (70.28 MB)ElHeinekenUser created page with UploadWizard

File Sumo Online

File usage

The following pages on the English Wikipedia use this file (pages on other projects are not listed):

Global file usage

The following other wikis use this file:

  • Usage on ca.wikipedia.org
  • Usage on de.wikipedia.org

Metadata

Retrieved from 'https://en.wikipedia.org/wiki/File:Sumo.webm'

To collect logs from the Okta platform, if you are not using the Sumo Logic FedRamp deployment, use the new Cloud to Cloud Integration for Okta to create the source and use the same source category while installing the app.

The sections below are deprecated for non-FedRamp Sumo Logic deployments. If you are using the Sumo Logic FedRamp deployment, use the sections below to configure collection for this app. Free

This page provides instructions for setting up alog collection from Okta. Click a link to jump to a topic:

Requirements and process overview (DEPRECATED)

Before you begin setting up log collection, review the required prerequisites and process overview described in the following sections.

Prerequisites

  • The integration between Sumo and Okta relies upon SumoJanus, a proprietary library used for script-based collection from applications such as Okta, Box, and Salesforce.
  • The system where you deploy SumoJanus and configure your installed collector and script source must have Java.
To ensure that SumoJanus can find your Java installation, set your JAVA_HOME environment or absolute PATH variable.

Process Overview (DEPRECATED)

Setting up log collection from Okta for analysis in Sumo Logic includes the following tasks, which must be performed in the order in which they are presented.

  1. Generate an Authentication Token in Okta.
  2. Download the SumoJanus package necessary for authentication.
  3. Deploy the SumoJanus package on a local server running the Sumo Logic Collector.
  4. Edit the local properties file with the Okta token created in step 1. The Properties file will be generated in step 2 when you download and deploy the SumoJanus package.
  5. Configure an Installed Collector and
  6. Configure a Script Source in Sumo Logic to send the data from Okta to Sumo Logic.

Configuring Okta log collection (DEPRECATED)

This section walks you through the process of setting up log collection from Okta for analysis in Sumo Logic. Click a link to jump to a topic.

Step 1: Generate the Okta API token (DEPRECATED)

Create an Okta API token, following instructions in Okta help. You will add the token to the SumoJanus properties file, later in this procedure.

Step 2: Download the SumoJanus package (DEPRECATED)

The following SumoJanus file is required to collect logs from Okta. Download the appropriate file for your system.

LinuxWindows
SumoJanus v3.0.1 package filesumojanus-okta-dist.1.0.2.tar.gzsumojanus-okta-dist.1.0.2.zip

Step 3: Deploy the SumoJanus package (DEPRECATED)

Sumologic File System

If you have not previously set up SumoJanus, follow the steps in New SumoJanus installation. If you have previously set up SumoJanus, follow the instructions in SumoJanus installation update.

New SumoJanus installation

Copy the package file you downloaded in Step 2 to the appropriate sumojanus folder, then unzip them there.

  • On Linux, run the following command:
  • On Windows, you can use Windows Explorer to open the zip package and copy it to the appropriate target folder.
Update your SumoJanus installation
  1. Backup conf/sumologic.properties and the data folder.
  2. Setup a New SumoJanus installation
  3. Migrate the backed up conf/sumologic.properties and data folder to the new Janus folder
  4. Modify the paths in Step 6 below to point to the new folder.

Step 4: Edit the Properties file (DEPRECATED)

  1. Open the file <sumojanus_foldername>/conf/sumologic.properties in a text editor and add the following lines to the end of the file. You will replace the <variables> with information (including the brackets) you enter in the following steps.
  1. api_token. Enter the Okta API token that you created in the Generate the Okta API token step.
  2. okta_org_url. Enter your Okta URL. Note that the URL starts with https, and not http.
  3. stream_pos_path. Replace the ${path}variable with the actual path on the server where SumoJanus is installed. For example: '/home/sumojanus'
  4. Save your changes. Your sumojanus/conf/sumologic.properties file should look similar to this example:

Step 5: Configure a Collector (DEPRECATED)

To avoid errors, use the latest bundled JRE version listed in the Collector Release Notes. Since the JRE folder can change with collector upgrades, we strongly recommend copying this JRE folder to a separate place and pointing the JAVAPATH to that folder. To check the current JRE folder the collector is using, go to the collector folder under config/wrapper.conf, and look for the variable wrapper.java.command.

Configure an Installed Collector on a Linux or Windows machine. By default the Collector will come with a Java Runtime Environment. To ensure that SumoJanus can locate Java, you may need to update the .bat or .bash file, as described below.

On Windows, update SumoJanus_Okta.bat

Navigate to the folder where you installed SumoJanus, and open SumoJanus_Okta.bat in a text editor. Line 3 of the script sets JAVAPATH to C:Program FilesSumo Logic Collectorjrebin as shown below:

set JAVAPATH='C:Program FilesSumo Logic Collectorjrebin'

If your collector JRE is in a different location, update Line 3 accordingly.
On Linux, update SumoJanus_Okta.bash

Navigate to the folder where you installed SumoJanus, and open SumoJanus_Okta.bash in a text editor. Update the script as follows:

  1. Add a line that sets JAVA_HOME to point to the location of your JRE, just before the last line of the script. For example, if your collector's JRE is in /opt/SumoCollector/jre/bin, insert this line:
    JAVA_HOME=/opt/SumoCollector/jre/bin

  2. The last line of the script is:
    java -jar ${SUMOJANUS_JAR_FILE} ${runMode} OktaCollector-1.0.2.jar -e 1800
    Prefix the line with $JAVA_HOME/, like this:
    $JAVA_HOME/java -jar ${SUMOJANUS_JAR_FILE} ${runMode} OktaCollector-1.0.2.jar -e 1800

Step 6: Configure a Source (DEPRECATED)

For guidance creating your Source Category naming convention, see Best Practices: Good Source Category, Bad Source Category.

To configure a Script Source, do the following:

  1. Configure a Script Source. Collectors using version 19.245-4 and later do not allow Script Sources to run by default.

    To allow Script Sources you need to set the Collector parameter enableScriptSource in user.properties to true and restart the Collector.

    Linux

    Windows

  2. Configure the Source fields:
    1. Name. OktaCollector.
    2. (Optional) Description.
    3. Source Category. okta
    4. Frequency. Every 5 Minutes
    5. Specify a timeout for your command. Activate the checkbox and select 60 Minutes
    6. Command. For Linux, use/bin/bash. For windows, use Windows Script. (Specify the correct path on your system).
    7. Script. Use the absolute path to sumojanus that you created in the Deploy the Packages step, such as /home/ubuntu/sumojanus/bin/SumoJanus_Okta.bash.(Do not select 'Type the script to execute.')
    8. Working Directory. $path/sumojanus,where $path is the absolute path of SumoJanus that you created in the Deploy the Packages step.

  3. Click Save.

Query samples

Details of Applications Deleted

_sourceCategory = 'okta' 'application.lifecycle.delete'
| json field=_raw 'eventType' as event_type
| where event_type = 'application.lifecycle.delete'
| json field=_raw 'outcome.result' as outcome_result
| json field=_raw 'displayMessage' as display_message
| json field=_raw 'published'as published_time
| json field=_raw 'actor.displayName' as okta_user_name
| json field=_raw 'actor.alternateId' as okta_user_id
| json field=_raw 'actor.type'
| json field=_raw 'severity' as severity
| json field=_raw 'target[0].displayName' as app_name
| json field=_raw 'target[0].type' as app_type
| json field=_raw 'client.ipAddress' as client_ip
| json field=_raw 'client.geographicalContext.city' as city
| json field=_raw 'client.geographicalContext.state' as state
| json field=_raw 'client.geographicalContext.country' as country
| json field=_raw 'client.geographicalContext.postalCode' as postal_code
| count by app_name, okta_user_id, outcome_result, display_message

Details of MFA Deactivate Event

_sourceCategory = 'okta' 'user.mfa.factor.deactivate'
| json field=_raw 'eventType' as event_type
| where event_type = 'user.mfa.factor.deactivate'
| json field=_raw 'outcome.result' as outcome_result
| json field=_raw 'published' as published_time
| json field=_raw 'actor.displayName' as actor
| json field=_raw 'actor.alternateId' as actor_id
| json field=_raw 'actor.type'
| json field=_raw 'severity' as severity
| json field=_raw 'client.userAgent.os' as OS
| json field=_raw 'client.userAgent.browser' as browser
| json field=_raw 'client.device' as device
| json field=_raw 'client.ipAddress' as client_ip
| json field=_raw 'client.geographicalContext.country' as country
| json field=_raw 'client.geographicalContext.state' as state
| json field=_raw 'client.geographicalContext.city' as city
| json field=_raw 'target[0].displayName' as okta_user_name
| json field=_raw 'target[0].alternateId' as okta_user_id
| count by okta_user_id, actor, outcome_result, country, state