We have updated our Terms of Service, Code of Conduct, and Addendum.

Trying to send data to Chronicle using a custom log type but it is not working

Terry Mulligan
Terry Mulligan Posts: 3
in General Discussions

I'm trying to send data to Chronicle using a custom log type but it is not working and the error messages are not very helpful.  The logs are JSON events.   I know the connector works because if I change the default log type to "Honeyd" from custom, the events are successfully sent to Chronicle.   Anyone have any success sending custom log types to Chronicle?

image.png
image.png

Tagged:

Best Answer

  • Franco Bonecco
    Franco Bonecco Posts: 2 mod
    Answer ✓

    Does this TEST_CMDB_ASSET log-type already exist in your Google Chronicle set up? If not, I bet that's the reason why GC is rejecting our requests.

Answers

  • Franco Bonecco
    Franco Bonecco Posts: 2 mod
    Answer ✓

    Does this TEST_CMDB_ASSET log-type already exist in your Google Chronicle set up? If not, I bet that's the reason why GC is rejecting our requests.

  • Terry Mulligan
    Terry Mulligan Posts: 3

    No, I have not setup that log type.  So you need to have them setup the log-type and then you can send over the sample data so they can parse.

  • Franco Bonecco
    Franco Bonecco Posts: 2 mod

    Correct.

  • Terry Mulligan
    Terry Mulligan Posts: 3

    Thank you.

Categories