---
slug: /cse/administration
title: Cloud SIEM Administration
sidebar_label: Cloud SIEM Administration
description: Learn how to set up users accounts and roles, create Cloud SIEM Actions, configure Network Blocks, manage custom insight status and sub-resolutions, and more.
canonical: https://www.sumologic.com/help/docs/cse/administration/
---

import useBaseUrl from '@docusaurus/useBaseUrl';

Learn about onboarding tasks and best practices for Cloud SIEM administrators. In this section, we'll introduce the following concepts:

<div className="box-wrapper" >
<div className="box smallbox card">
  <div className="container">
  <a href={useBaseUrl('docs/cse/administration/filter-search')}><img src={useBaseUrl('img/icons/search.png')} alt="Magnifying glass icon" width="40"/><h4>Filter and Search</h4></a>
  <p>Learn how to filter and search Cloud SIEM list pages.</p>
  </div>
</div>
<div className="box smallbox card">
  <div className="container">
  <a href={useBaseUrl('docs/cse/administration/create-use-network-blocks')}><img src={useBaseUrl('img/icons/operations/microservices.png')} alt="Network icon" width="40"/><h4>Network Blocks</h4></a>
  <p>Learn about network blocks, their purpose, and instructions for setting them up and using them.</p>
  </div>
</div>
<div className="box smallbox card">
  <div className="container">
  <a href={useBaseUrl('docs/cse/administration/create-a-custom-tag-schema')}><img src={useBaseUrl('img/icons/operations/schema.png')} alt="Tree diagram icon" width="40"/><h4>Create a Custom Tag Schema</h4></a>
  <p>Learn how to create a custom tag schema in Cloud SIEM. </p>
  </div>
</div>
<div className="box smallbox card">
  <div className="container">
  <a href={useBaseUrl('docs/cse/administration/create-custom-threat-intel-source')}><img src={useBaseUrl('img/icons/security/world-class-security.png')} alt="Shield with a globe icon" width="40"/><h4>Custom Threat Intelligence Sources</h4></a>
  <p>Learn how manage custom threat intelligence sources.</p>
  </div>
</div>
<div className="box smallbox card">
  <div className="container">
  <a href={useBaseUrl('docs/cse/administration/create-cse-actions')}><img src={useBaseUrl('img/icons/security/cloud-siem.png')} alt="Cloud with a shield icon" width="40"/><h4>Create Cloud SIEM Actions</h4></a>
  <p>Learn how to issue a notification to another service when certain events occur in Cloud SIEM.</p>
  </div>
</div>
<div className="box smallbox card">
  <div className="container">
  <a href={useBaseUrl('docs/cse/administration/create-cse-context-actions')}><img src={useBaseUrl('img/icons/operations/queries.png')} alt="Database symbol in a magnifying glass icon" width="40"/><h4>Create Cloud SIEM Context Actions</h4></a>
  <p>Learn to query an external system for details about an entity, IOC, or data encountered in a record.</p>
  </div>
</div>
<div className="box smallbox card">
  <div className="container">
  <a href={useBaseUrl('docs/cse/administration/cse-apis')}><img src={useBaseUrl('img/icons/cloud/api2.png')} alt="Code icon" width="40"/><h4>Cloud SIEM APIs</h4></a>
  <p>Learn how to access Cloud SIEM APIs and API documentation.</p>
  </div>
</div>
<div className="box smallbox card">
  <div className="container">
  <a href={useBaseUrl('docs/cse/administration/cse-data-retention')}><img src={useBaseUrl('img/icons/operations/data-volume.png')} alt="Database icon" width="40"/><h4>Data Retention</h4></a>
  <p>Learn about retention periods for different types of Cloud SIEM data.</p>
  </div>
</div>
<div className="box smallbox card">
  <div className="container">
  <a href={useBaseUrl('docs/cse/administration/cse-audit-logging')}><img src={useBaseUrl('img/icons/logs.png')} alt="Document icon" width="40"/><h4>Audit Logging</h4></a>
  <p>Learn how to search the Audit Event Index for Cloud SIEM log events.</p>
  </div>
</div>
<div className="box smallbox card">
  <div className="container">
  <a href={useBaseUrl('docs/cse/administration/cse-user-accounts-and-roles')}><img src={useBaseUrl('img/icons/business/regional-partner-sales.png')} alt="People with gears icon" width="40"/><h4>Cloud SIEM User Accounts and Roles</h4></a>
  <p>Learn how to create and manage user accounts and roles for Cloud SIEM.</p>
  </div>
</div>
<div className="box smallbox card">
  <div className="container">
  <a href={useBaseUrl('docs/cse/administration/custom-inventory-sources')}><img src={useBaseUrl('img/icons/operations/collect.png')} alt="Small boxes merging into a circle icon" width="40"/><h4>Custom Inventory Source</h4></a>
  <p>Learn how to extract Inventory Data from logs in Sumo Logic and send it to Cloud SIEM.</p>
  </div>
</div>
<div className="box smallbox card">
  <div className="container">
  <a href={useBaseUrl('docs/cse/administration/save-inventory-data-lookup-table')}><img src={useBaseUrl('img/icons/operations/frequent-search.png')} alt="Check mark in an magnifhing glass icon" width="40"/><h4>Save Inventory Data to a Lookup Table</h4></a>
  <p>Learn how to use a saved Sumo Logic search to populate a Lookup Table with Cloud SIEM inventory data.</p>
  </div>
</div>
<div className="box smallbox card">
  <div className="container">
  <a href={useBaseUrl('docs/cse/administration/manage-custom-insight-resolutions')}><img src={useBaseUrl('img/icons/operations/correlation-engine.png')} alt="Bar chart with a gear icon" width="40"/><h4>Manage Custom Insight Resolutions</h4></a>
  <p>Learn how to create and manage custom insight resolutions.</p>
  </div>
</div>
<div className="box smallbox card">
  <div className="container">
  <a href={useBaseUrl('docs/cse/administration/manage-custom-insight-statuses')}><img src={useBaseUrl('img/icons/operations/retain-and-visualize-logs.png')} alt="Bar chart in a circle icon" width="40"/><h4>Managing Custom Insight Statuses</h4></a>
  <p>Learn how to create and manage custom insight statuses.</p>
  </div>
</div>
<div className="box smallbox card">
  <div className="container">
  <a href={useBaseUrl('docs/cse/administration/using-sensor-zones')}><img src={useBaseUrl('img/icons/cloud/events.png')} alt="Squares icon" width="40"/><h4>Sensor Zones</h4></a>
  <p>Learn how to use Sensor Zones to distinguish between Cloud SIEM entities that have the same IP address.</p>
  </div>
</div>
<div className="box smallbox card">
  <div className="container">
  <a href={useBaseUrl('docs/cse/administration/inventory-sources-and-data')}><img src={useBaseUrl('img/icons/operations/manage.png')} alt="Peoople on a gear icon" width="40"/><h4>Inventory Sources and Data</h4></a>
  <p>Learn about Inventory Sources and the Inventory Data they collect.</p>
  </div>
</div>
<div className="box smallbox card">
  <div className="container">
  <a href={useBaseUrl('docs/cse/administration/mitre-coverage')}><img src={useBaseUrl('img/icons/operations/manage.png')} alt="People on a gear icon" width="40"/><h4>MITRE Coverage</h4></a>
  <p>Learn how well you are prepared to detect adversary attacks based on the tactics and techniques in the MITRE ATT&CK Enterprise Matrix.</p>
  </div>
</div>
</div>