Exporting audit logs to MaxPatrol SIEM

MaxPatrol SIEM allows reading Yandex Cloud audit logs from a data stream in Yandex Data Streams. To complete this tutorial, you need access to a MaxPatrol SIEM instance.

You can create an infrastructure for exporting of audit logs from a datastream to MaxPatrol SIEM using one of these tools:

• Management console: Create your infrastructure step by step from the Yandex Cloud management console.
• Terraform: Streamline creating and managing your resources using the Infrastructure as Code (IaC) approach. Download a Terraform configuration example from the GitHub repository and then deploy your infrastructure using the Terraform Yandex Cloud provider.