Update Connector_VectraAI_Stream.json

This commit is contained in:
v-jayakal 2021-06-23 22:51:58 -07:00 коммит произвёл GitHub
Родитель ea0f7e7768
Коммит 7baceff1e0
Не найден ключ, соответствующий данной подписи
Идентификатор ключа GPG: 4AEE18F83AFDEB23
1 изменённых файлов: 2 добавлений и 2 удалений

Просмотреть файл

@ -3,7 +3,7 @@
"title": "AI Vectra Stream", "title": "AI Vectra Stream",
"publisher": "Vectra AI", "publisher": "Vectra AI",
"descriptionMarkdown": "The AI Vectra Stream connector allows to send Network Metadata colelcted by Vectra Sensors accross the Network and Cloud to Azure Sentinel", "descriptionMarkdown": "The AI Vectra Stream connector allows to send Network Metadata colelcted by Vectra Sensors accross the Network and Cloud to Azure Sentinel",
"additionalRequirementBanner":"These queries are dependent on a parser based on a Kusto Function to work as expected. Install Kusto functions prior creating new queries or workbook.", "additionalRequirementBanner":"This data connector depends on a parser based on a Kusto Function to work as expected [**VectraStream**](https://aka.ms/sentinel-aivectrastream-parser) which is deployed with the Azure Sentinel Solution.",
"graphQueries": [ "graphQueries": [
{ {
"metricName": "Total data received", "metricName": "Total data received",
@ -124,7 +124,7 @@
}, },
{ {
"title": "2. Configure the logs to be collected", "title": "2. Configure the logs to be collected",
"description":"Follow the configuration steps below to get Vectra Stream metadata into Azure Sentinel. The Log Analytics agent is leveraged to send custom JSON into Azure Monitor, enabling the storage of the metadata into a custom table. For more information, refer to the [Azure Monitor Documentation](https://docs.microsoft.com/azure/azure-monitor/agents/data-sources-json).\n1. Download config file for the log analytics agent: VectraStream.conf (located in the Connector folder within the Vectra solution: https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/Vectra).\n2. Login to the server where you have installed Azure Log Analytics agent.\n3. Copy VectraStream.conf to the /etc/opt/microsoft/omsagent/**workspace_id**/conf/omsagent.d/ folder.\n4. Edit VectraStream.conf as follows:\n\n\t i. configure an alternate port to send data to, if desired. Default port is 29009.\n\n\t ii. replace **workspace_id** with real value of your Workspace ID.\n5. Save changes and restart the Azure Log Analytics agent for Linux service with the following command:\n\t\tsudo /opt/microsoft/omsagent/bin/service_control restart", "description":"Follow the configuration steps below to get Vectra Stream metadata into Azure Sentinel. The Log Analytics agent is leveraged to send custom JSON into Azure Monitor, enabling the storage of the metadata into a custom table. For more information, refer to the [Azure Monitor Documentation](https://docs.microsoft.com/azure/azure-monitor/agents/data-sources-json).\n1. Download config file for the log analytics agent: VectraStream.conf (located in the Connector folder within the Vectra solution: https://aka.ms/sentinel-aivectrastream-conf).\n2. Login to the server where you have installed Azure Log Analytics agent.\n3. Copy VectraStream.conf to the /etc/opt/microsoft/omsagent/**workspace_id**/conf/omsagent.d/ folder.\n4. Edit VectraStream.conf as follows:\n\n\t i. configure an alternate port to send data to, if desired. Default port is 29009.\n\n\t ii. replace **workspace_id** with real value of your Workspace ID.\n5. Save changes and restart the Azure Log Analytics agent for Linux service with the following command:\n\t\tsudo /opt/microsoft/omsagent/bin/service_control restart",
"instructions":[ "instructions":[
{ {
"parameters": { "parameters": {