Trying to send data to Chronicle using a custom log type but it is not working
I'm trying to send data to Chronicle using a custom log type but it is not working and the error messages are not very helpful. The logs are JSON events. I know the connector works because if I change the default log type to "Honeyd" from custom, the events are successfully sent to Chronicle. Anyone have any success sending custom log types to Chronicle?
Best Answer
-
Does this
TEST_CMDB_ASSETlog-type already exist in your Google Chronicle set up? If not, I bet that's the reason why GC is rejecting our requests.0
Answers
-
Does this
TEST_CMDB_ASSETlog-type already exist in your Google Chronicle set up? If not, I bet that's the reason why GC is rejecting our requests.0 -
No, I have not setup that log type. So you need to have them setup the log-type and then you can send over the sample data so they can parse.
0 -
Correct.
0 -
Thank you.
0