Verify connectivity for LogRhythm

  • 릴리스 버전: Australia
  • 업데이트 날짜 2026년 03월 12일
  • 소요 시간: 2분

    • Verify your connection to the LogRhythm Client Console by sending curl requests to test the LogRhythm REST API. The verification process is optional.

    시작하기 전에

    Role required: sn_si.admin

    이 태스크 정보

    To verify the connection to the LogRhythm Client Console is working properly after you set up the LogRhythm REST APIs, send two curl requests from the computer hosting the MID Server you configured in Install the plugin and configure LogRhythm.

    The LogRhythm REST API uses WSSE for authentication, which requires some outside scripting to work with Curl and Postman.

    The LogRhythm REST API uses a token for authentication, so you can make the actual validation call that the integration uses. The “0” at the end of the URL is a LogRhythm Alarm ID. The LogRhythm REST API with a default configuration requires port 8501. This port number should be included in the URL that you plan to use for the test.

    프로시저

    Update the URL <LogRhythm REST url> and token <api token> in the following curl request and send it to validate the LogRhythm REST API: curl -k -i -v --trace-time -o /dev/null -H "Content-Type: text/json" -H "Authorization: Bearer <api token>" "https://<cache drilldown url>/lr-drilldown-cache-api/drilldown/0"
    For a successful connection to the LogRhythm REST API, you should receive an HTTP 404, but the response body contains Alarm ID: 0 not found.