SentinelOne Integration with ELK

Jayesh_Auti · February 5, 2026, 6:17am

Hi Guys,

I am integrating SentinelOne with ELK, after adding console URL and API key it showing me to add elastic agent.

Elastic agent is required for these type of integrations?

Can anyone help me with this?

Thank you,
Jayesh

Tortoise · February 5, 2026, 7:39am

Hello @Jayesh_Auti

Welcome to the Community!!

Yes, elastic agent will be required to collect the data. Similar post :

Thanks!!

Jayesh_Auti · February 5, 2026, 9:28am

Hi,

Thank you for clarifying.

I will be doing another integrations like AWS WAF, AWS Guard Duty, so for these also I will need seprate elastic agent or the same I can use and where I have to install the elastic agent on the same instance where ELK is hosted or somewhere else?

Thank you,
Jayesh

Topic		Replies	Views
HELP, Interconnecting SentinelOne with Elasticsearch SIEM	7	671	June 20, 2023
SentinelOne Integration Elasticsearch elastic-agent , integrations	4	1804	August 19, 2022
How to connect Stand Alone Elastic Agent to SentinelOne and Logstash? Elastic Agent	2	500	August 16, 2023
Elastic Integration with Sentinel one deep visibility data Elasticsearch elastic-stack-monitoring , elastic-stack-security , elastic-stack-alerting	3	398	December 11, 2023
Integration Elastic Security with Microsoft Sentinel available? Elastic Security	7	2720	July 4, 2023

SentinelOne Integration with ELK

Related topics