OpsGenie Destination

Configuring OpsGenie as an alert destination in your Panther Console

Overview

Destinations are integrations that receive alerts from rules, policies, system health notifications, and rule errors. Panther supports configuring OpsGenie as the destination where you will receive alerts.

The OpsGenie Destination requires an Opsgenie API key. When an alert is forwarded to an OpsGenie Destination, it creates an incident using the specified API key.

How to set up OpsGenie alert destinations in Panther

Configure the integration in OpsGenie

Log in to your OpsGenie dashboard. Navigate to the Teams tab and select the team to receive alerts.
Click Integrations on the left, then click Add integration.
In the Integrations list, click API.
Configure the name, settings, and permissions for the integration. Check the boxes next to the Enabled and Create and Update Access permissions.
Copy the API Key from the configuration settings and store it in a secure location. You will need this in the next steps.
Click Save Integration.

Configure the OpsGenie alert destination in Panther

Log in to the Panther Console.
In the left sidebar, click Configure > Alert Destinations.
Click +Add your first Destination.
- If you have already created Destinations, click Create New in the upper right side of the page to add a new Destination.
Click OpsGenie.
Fill out the form to configure the Destination:
- Display Name: Enter a descriptive name.
- API Key: Enter the OpsGenie API Key you generated in previous steps of this documentation.
- Region: Select your region based on where your OpsGenie account is registered.
- Severity: Select the severity level of alerts to send to this Destination.
- Alert Types: Select the alert types to send to this Destination.
- Log Type: By default, we will send alerts from all log types. Specify log types here if you want to only send alerts from specific log types.
Click Add Destination.
On the final page, optionally click Send Test Alert to test the integration. When you are finished, click Finish Setup.

Additional Information on Destinations

For more information on alert routing order, modifying or deleting destinations, and workflow automation, please see the Panther docs: Destinations.

PreviousMindflow Destination (Beta)NextPagerDuty Destination

Last updated 11 months ago

Overview

The OpsGenie Destination requires an Opsgenie API key. When an alert is forwarded to an OpsGenie Destination, it creates an incident using the specified API key.

How to set up OpsGenie alert destinations in Panther

Configure the integration in OpsGenie

Click Integrations on the left, then click Add integration.

In the Integrations list, click API.

Configure the name, settings, and permissions for the integration. Check the boxes next to the Enabled and Create and Update Access permissions.

Copy the API Key from the configuration settings and store it in a secure location. You will need this in the next steps.

Click Save Integration.

Configure the OpsGenie alert destination in Panther

In the left sidebar, click Configure > Alert Destinations.

Click +Add your first Destination.

If you have already created Destinations, click Create New in the upper right side of the page to add a new Destination.

Click OpsGenie.

Fill out the form to configure the Destination:

Display Name: Enter a descriptive name.
API Key: Enter the OpsGenie API Key you generated in previous steps of this documentation.
Region: Select your region based on where your OpsGenie account is registered.
Severity: Select the severity level of alerts to send to this Destination.
Alert Types: Select the alert types to send to this Destination.
Log Type: By default, we will send alerts from all log types. Specify log types here if you want to only send alerts from specific log types.

Click Add Destination.

On the final page, optionally click Send Test Alert to test the integration. When you are finished, click Finish Setup.