Citrix Secure Private Access™

Data exports and third-party integrations

Security Information and Event Management integration

The integration of Secure Private Access with Security Information and Event Management (SIEM) enables administrators to export critical logs, policy outcomes, and user activity data to third-party SIEM systems using Kafka push mechanisms. This integration provides enhanced visibility, compliance tracking, and security insights for organizations using Citrix Secure Private Access services.

You can use any SIEM, such as Splunk, Google Chronicle, Microsoft Sentinel, or Elastic.

For the list of user events associated with Secure Private Access and Device Posture service in your SIEM, see the following topics:

Build custom report with OData APIs

The Secure Private Access Monitor OData REST APIs enables administrators to export session data and build custom reports. This feature is useful for tracking rollouts, analyzing user activity, and gaining insights into the performance and usage of Secure Private Access services.

For information on the types of Secure Private Access data available for export, see the following topics:

Export system logs

The Systems Log feature in Citrix Cloud provides a timestamped record of events that occur within the Secure Private Access service. Administrators can export these logs as a CSV file for further analysis and verification. For details, see Syslog from Citrix Cloud.

Data exports and third-party integrations