Gem is a Alert Source integration. The Dropzone platform creates Investigations based on alerts from Alert Sources.
Gem is a SIEM focusing on Cloud Detection and Response (CDR).
Dropzone requires a Gem Client ID and Client Secret.
To obtain these, follow the instructions available on Gem's documentation sitearrow-up-right for creating a Client ID and Client Secret.
To enable the Alert Source integration, do the following:
Navigate to your Dropzone AI tenant home page e.g. https://mycompany.dropzone.app
In the bottom left hand corner, click Settings > Integrations
Click "Available"
In the Search bar, search Gem, then click "Configure"
Input your Gem server domain (e.g. app.gem.security, eu-west-1.app.gem.security)
Input the Client ID and Client Secret you created in the Gem interface
Click "Comment Investigation Results to ticket" if you want Dropzone to push investigation results back to Gem
Click "Test & Save"
If you have any errors or questions, engage your Dropzone AI support representative.
Last updated 6 months ago
Was this helpful?
