Skip to main content Link Menu Expand (external link) Document Search Copy Copied

Mimecast

Table of contents
  1. Configuring a Mimecast Plugin
    1. Mimecast: Creating an API Application
    2. Mimecast: Enabling Logging
    3. Mimecast: Creating Application Keys
  2. Fluency: Adding a Mimecast Import
    1. Sec 2a: Navigate to Ingress page, select relavent section
  3. Appendix

Configuring a Mimecast Plugin

Mimecast: Creating an API Application

To begin, log into Mimecast.

For the Mimecast account associated with the API:

* Verify that you have a Mimecast administrator account with the Gateway \| Tracking \| Read permissions enabled.
* Ensure that the account you’re going to use to authenticate is in the **Basic Administrators** group in Mimecast.

When prompted to select an app, select the Administration Console.

This brings you to the administration dashboard.

Using the drop-down menu that reads “Administration,” navigate to the “Services” tab and select “API and Platform Integrations”.

Scroll down and select the “Fluency Security” SIEM integration. Click on the “Generate Keys” button.

This will take you through the steps of adding an API application.

Select “SIEM Integration” for the category. Check the box to “Enable Extended Session”. This step is needed to ensure that the API access keys will never expire.

Next, add the following information:

  • Developer Add the name of the application’s developer.
  • Email Add the email address of the application’s developer.
Any value should work for these fields. For instance:  
**Developer**: FluencySecurity  
**Email**: admin@fluencysecurity.com

The last window allows you to review your information before you add the API application. Review the fields to make sure everything is correct, then click the blue “Add” button to save the application.

After saving, you will be redirected back to the API and Platform Integrations page, with a summary box for the new application on the side and a message confirming its creation.

The Application ID and Application Key can be obtained from this summary box. Click the eye symbol to view the key and click the paper symbol to copy either one to the clipboard.

The new API application will appear in the table.

Note: There is a 30 minute wait after creating the new application before you are able to create keys.

Mimecast: Enabling Logging

Click the “Administration” menu again, navigate to the “Account” tab, and select “Account Settings.”

This will open a new tab for the “Account Settings” page. Select the last tab, “Enhanced Logging.” Once the menu opens, select the check-boxes for all the options.

Mimecast: Creating Application Keys

Return to the API and Platform Integrations page. Navigate to the Application Integrations page. At the end of the row with each application is a “…” button. Click this button for the desired application and select “Create Keys” from the drop down menu that appears.

Enter the email address associated with the Basic Administrator Mimecast account. In most cases, this is also the address shown in the top right corner.

You will then be prompted to select the type of account (in this case Cloud) and enter the password for the account.

You may be asked to complete the multi-factor authentication.

After verification, two keys will be provided: an access key and a secret key. You will need both to set up the Mimecast import. Click the eye symbol to view the key and click the paper symbol to copy the key to the clipboard.

Note: Once you navigate away from this page, you will no longer be able to view the keys.

Fluency: Adding a Mimecast Import

Log into Fluency, and navigate to the Cloud Integrations page under the Data Ingress section of the main menu.

Sec 2a: Navigate to Ingress page, select relavent section

To Add an integration for Mimecast, choose the icon from the group on the left side of the page, under the Email Audit and Protection Services section.

These are the required pieces of information to create this import.

Once you have all the application information from instructions above, paste it into each field of the import creation form.

The base URL can be obtained from https://www.mimecast.com/tech-connect/documentation/api-overview/global-base-urls/.

Click “SAVE” to save the import.

Once saved, the import will appear under the Email Audit and Protection Services section, on the right side of the page. The green power light indicates that it is enabled.

Appendix

For more information on using Mimecast, vendor documentation can be found at:

https://community.mimecast.com/s/article/Managing-API-Applications-505230018https://www.mimecast.com/tech-connect/documentation/tutorials/downloading-siem-logs/

Page last updated: 2022 Nov 18