# Sumo Logic

## Pre-requisites

* A Sumo Logic account
* BugBase Company Account with an Active Program

{% hint style="warning" %}
This feature is available only to **Enterprise Tier Customers**
{% endhint %}

## **Helpful Links**

[Sumo Logic Access Keys](https://help.sumologic.com/docs/manage/Security/Access-Keys/)

## Connect your program to Sumo Logic

> To setup your Sumo Logic integration:

1. Navigate to Your **Program Dashboard > Settings > Integrations**.
2. Click `Connect` on the Sumo Logic Integration Card.
3. Then you will be asked to enter your Sumo Logic `Access ID` and `Access Key`. You can enter an existing one or create a new one from your Sumo Logic account.

<figure><img src="/files/fql22AHufoQp8AXWi5Yz" alt=""><figcaption></figcaption></figure>

{% hint style="success" %}
:tada:Congratulations! You've successfully connected **SumoLogic** with your **BugBase Program**
{% endhint %}

## Add Sumo Logic collectors

> To Add Sumo Logic collectors to your program:

1. Navigate to Your **Program Dashboard > Settings > Integrations**.
2. Click the `Configure` button on the Sumo Logic Integration Card.
3. A configuration modal will open, click on the `Add Collector` button.

<figure><img src="/files/ywVSRO4RBTxmtpnaQvny" alt=""><figcaption></figcaption></figure>

4. Fill out the collector name, category and description as per your needs.

<figure><img src="/files/WP3xRe20A7EmauIdEBuB" alt=""><figcaption></figcaption></figure>

5. You can select single or multiple triggers to receive logs. A source will be created for each trigger in your collector.
6. You can add a custom body to receive in your logs alongside the report/vulnerability data.

### List of Triggers and their corresponding source names in Sumo Logic:

> **Report Triggers**

`New Report is Submitted` --> `report_submitted`

`Report is Triaged` --> `report_triaged`

`Report is marked as Invalid` --> `report_marked_invalid`

`Report is marked as Duplicate` --> `report_marked_duplicate`

`Report is marked as Resolved` --> `report_marked_resolved`

`Report is marked as Informational` --> `report_marked_informational`

`Report is Closed` --> `report_closed`

> **Vulnerability Triggers**

`New Vulnerability is Reported` --> `vulnerabilty_submitted`

`Vulnerability is marked as Resolved` --> `vulnerabilty_marked_resolved`

`Vulnerability is marked as Ignored` --> `vulnerabilty_marked_ignored`

`Vulnerability is marked as Unresolved` --> `vulnerabilty_marked_unresolved`

`Vulnerability is Retested` --> `vulnerabilty_retested`

## Ad

## Update Sumo Logic collector

> To update Sumo Logic collectors in your program:

1. Navigate to Your **Program Dashboard > Settings > Integrations**.
2. Click the `Configure` button on the Sumo Logic Integration Card.
3. Select the collector you want to update and click the `Edit Collector` button. You can also toggle the `Switch` to enable/disable the collector.

<figure><img src="/files/ESFkjjHIAC3m6gjkizmH" alt=""><figcaption></figcaption></figure>

4. Update the details and save your changes.

<figure><img src="/files/MWBnKaRcNZTLCiRnIRYo" alt=""><figcaption></figcaption></figure>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.bugbase.ai/integrations/sumo-logic.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.