Skip to content
Find out how we support MDR.

Sophos Cloud Optix

API

If you've set up cloud environments (Amazon AWS, Microsoft Azure and Google Cloud Platform) in Sophos Cloud Optix, this integration sends anomaly alerts from those environments to the Sophos Data Lake.

You must have a Sophos Cloud Optix license to use this feature.

To set up Sophos Cloud Optix integration, do as follows.

  1. In Sophos Central, go to Threat Analysis Center > Integrations > Marketplace.
  2. Click Sophos Cloud Optix.
  3. Click Enable/Disable Integration.
  4. In Exclude Environments you can enter the names of any environments whose alerts you don't want to see in Sophos Central.

    If you don't see any environment names, you must go to Sophos Cloud Optix and set up your cloud environments.

  5. Integration Status shows whether the integration is active or not.

    You can select Pause to temporarily pause the integration.

  6. Click Save.

Alerts from all your Sophos Cloud Optix environments, except those you've excluded, are sent to the Sophos Data Lake.