We're excited to introduce the new Dragos app for Sumo Logic. This app leverages the Sumo Logic Cloud-to-Cloud Dragos source that collects collect vulnerabilities, notifications, addresses, zones, and assets logs from the Dragos platform. This app helps security analysts to minimize cybersecurity risks, improve operational resilience, and safeguard critical infrastructure from evolving cyber threats. Learn more.

We're excited to announce the release of our new cloud-to-cloud source for Sysdig Secure. This source aims to collect the scan results from the scanner using Sysdig API and send them to Sumo Logic for streamlined analysis. Learn more.

We're excited to introduce the new Trust Login app for Sumo Logic. This app leverages the Sumo Logic Cloud-to-Cloud Trust Login source that collects report logs from the Trust Login platform, enabling security analysts to monitor authentication events and user activities, and respond to potential security threats across your organization. Learn more.

We're excited to introduce the new Code42 Incydr app for Sumo Logic. This app leverages the Sumo Logic Cloud-to-Cloud Code42 Incydr source that collects audits, file events, and user sessions data from the Code42 Incydr platform. This app helps security analysts monitor, detect, and respond to potential data threats across an organization. Learn more.

We're excited to introduce the new JumpCloud Directory Insights app for Sumo Logic. This app provides a comprehensive visibility into authentication events, user activities, and security-related actions within your JumpCloud-managed environment. The pre-configured dashboards can help you to track failed login attempts, privileged access changes, and account lockouts in real-time to improve security and ensure organizational policy compliance. Learn more.

New release​

We’re excited to announce the release of the new Azure Virtual Network app and 11 new OpenTelemetry Remote Management source templates for Sumo Logic.

• Azure Virtual Network. Azure Virtual Network is a service that provides the fundamental building block for your private network in Azure, enabling many types of Azure resources to securely communicate with one other, using the internet, and on-premises networks. This integration helps in monitoring the outgoing and incoming traffic flows, dropped packets, bandwidth consumption, verifying network isolation, and compliance. Learn more.
• OpenTelemetry Remote Management. Released Apache, Docker, Kafka, Linux, Local File, Mac, Nginx, RabbitMQ, Redis, Syslog, and Windows OpenTelemetry Remote Management source templates.

AWS Observability v2.11.0​

This section details the new features and updates in AWS Observability for upgrading your Terraform script or CloudFormation template to version v2.11.0.

• New Features:
  • Amazon RDS app. Added support to analyze and monitor RDS Oracle CloudWatch and CloudTrail logs.
  • Amazon Load Balancer apps. Added support to analyze and monitor Cloudtrail audit event logs for Application Load Balancer, Classic Load Balancer, and Network Load Balancer.
  • Added out-of-the-box monitors for RDS Oracle DB, Application Load Balancer, Classic Load Balancer, and Network Load Balancer. Solution now supports 78 out-of-box monitors.
  • Added support to collect custom metrics namespaces.
  • Added support to subscribe cloudWatch log groups based on AWS tags to Sumo Logic.
  • Added support to filter AWS CloudWatch metrics based on AWS tags.
• Updates:
  • Updated cloudformation helper function with Lambda Runtime to python v3.13.
  • Updated SAM Lambda runtime to python v3.13 with latest library updates.
  • Updated Telemetry Lambda Runtime to python v3.13 with latest library updates.

To learn more, refer the AWS Observability changelog.

Enhancements​

• Added Monitors in OpenTelemetry apps. Jira - App Development, Linux - Cloud Security and Monitoring Analytics, PCI Compliance for Linux, PCI Compliance For Windows JSON, Puppet - App Development, and Windows - Cloud Security Monitoring and Analytics apps are updated with new monitors.
• Integrated Cloud-to-Cloud source creation and app installation. Armis, Asana, Digital Guardian ARC, DocuSign, Dropbox, Druva, Druva Cyber Resilience, Gmail Trace Logs, Microsoft Exchange Trace Logs, Microsoft Graph Identity Protection, Miro, SailPoint, and Zendesk apps are now updated to have integrated Cloud-to-Cloud source creation and app installation.
• Classic Apps to Next-Gen Apps Migration. CIS AWS Foundations Benchmark, Gmail Trace Logs, and Microsoft Exchange Trace Logs apps are migrated from Classic Apps (Legacy) to Next-Gen Apps.
• We have enhanced the following six Cloudtrail Logs based apps:
  • Amazon CloudTrail - Cloud Security Monitoring and Analytics
  • AWS CloudTrail
  • CIS AWS Foundations Benchmark
  • Cloud Infrastructure Security for AWS
  • PCI Compliance For AWS CloudTrail
  • Threat Intel for AWS
• Sumo Logic Kickstart Data. Updated the default time range of all the panels to six hours and added text panels in the dashboards.
• AWS Serverless Application Models. Added support for Sumo Logic Korea deployment by releasing the following SAM:
  • sumologic-aws-cloudtrail-benchmark - Semantic v1.0.19

Bug Fixes​

• Kubernetes Control Plane. Added the quantization_interval filter variable.

We are excited to announce that we are now supporting Sumo Logic's Organizations ("Sumo Orgs") feature for Sumo Logic Flex customers. With this release, Flex customers can effectively group, provision, manage, and monitor the credit usage across multiple organizations, providing greater visibility and control over account structures. Learn more.

We're excited to introduce the new VMware Workspace ONE app for Sumo Logic. This app leverages the Sumo Logic Cloud-to-Cloud VMware Workspace ONE source that collects audit logs data from the VMware Workspace ONE platform. This app helps security analysts monitor device compliance, encryption, and overall security status, offering a powerful solution for effective risk analysis, policy enforcement, and device security. Learn more.

We're excited to introduce the time-phased scan budgets for advanced usage management, which helps you to set Daily, Weekly, or Monthly budgets for individual user or a single shared budget for an entire group. Learn more.

We're excited to announce enhancements to how you create and manage access keys.

Personal Access Keys​

The My Access Keys section has been moved out of Preferences to its own tab and renamed Personal Access Keys.

To open the Personal Access Keys tab:

• Classic UI. In the main Sumo Logic menu, select your username and then Preferences > Personal Access Keys.
• New UI. In the top menu select your username, and then under Preferences select Personal Access Keys. You can also click the Go To... menu at the top of the screen and select Personal Access Keys.

Scopes​

You can now create permission scopes for access keys. Scopes limit the API endpoints an access key can be used to call. This allows you to specify only the permissions the access key needs to accomplish a specific task, making the key more secure.

Learn more.

• Symantec Endpoint Security Service. We're excited to introduce the new Symantec Endpoint Security Service app for Sumo Logic. This app leverages the Sumo Logic Cloud-to-Cloud Symantec Endpoint Security source that collects incident and event logs data from the Symantec Endpoint Security platform. This app provides real-time insights into the log data that allows you to monitor and manage endpoint security in real time, enhancing quick responses to threats. Learn more.

• Jamf. We're excited to introduce the new Jamf app for Sumo Logic. This app leverages the Sumo Logic Cloud-to-Cloud Jamf source that collects inventory data from the Jamf platform. This app helps security analysts with critical insights into their organization's Jamf environment. Learn more.

The Sumo Logic Distribution for OpenTelemetry Collector now supports remote management, enabling you to configure and manage data collection directly from the Sumo Logic UI. With this feature, you can:

• Simplify configuration. Set up and manage data collection for multiple collectors without server access.
• Streamline workflows. Use tags to group collectors and apply centralized data source templates, reducing redundancy and manual effort.
• Enhance automation. Automatically monitor new servers by tagging them during setup.
• Accelerate time to value. Start collecting data in minutes with an intuitive UI and no need to manage configuration files.

This release provides a faster, more efficient way to manage large-scale data collection, supporting scalable and automated operations. Learn more.

We're excited to introduce the new Trend Micro Vision One app for Sumo Logic. This app leverages the Sumo Logic Cloud-to-Cloud Trend Micro Vision One source that collects alert logs data from the Trend Micro Vision One platform. This app helps you can gain real-time visibility into security events and incidents within your organization's infrastructure, allowing them to detect and react to potential threats quickly. Learn more.

This is an archive of the 2024 Sumo Logic Service Release Notes.

This is an archive of the 2023 Sumo Logic Service Release Notes.

This is an archive of the 2022 Sumo Logic Service Release Notes.

This is an archive of the 2021 Sumo Logic Service Release Notes.