Skip to main content
Red Canary help

Integrate Cisco Firepower with Red Canary

  • Updated .

This article leads you through the process of integrating Cisco Firepower with Red Canary. Follow the procedure from beginning to end. 

Step 1: Red Canary–Create your Red Canary generated email

Create a Red Canary provided-email to send Cisco Firepower alerts for ingestion. 

  1. From the Red Canary homepage, click Integrations, and then click Alert Sources.
  2. In the search bar, type and select Cisco Firepower.
    1.png
  3. To configure your new alert source, scroll down and click Cisco Firepower.
  4. Click Edit Configuration.
  5. Enter a Name for your external alert source.  
  6. Select a Display Category.
  7. Under the Ingest Format/Method dropdown, select Cisco Firepower via Email.
  8. Click Save Configuration. This will generate the email address you will use to send Cisco Umbrella alerts to.
    2.png
  9. Click Edit Configuration.
  10. Click Activate.

Comments

1 comment

Date Votes
  • Eduardo Vivas

    The article does not explain where to enter the email provided within Firepower. Anyone unfamiliar with navigating and using the FMC only has half the process.

    1

Please sign in to leave a comment.