12-22-2022 02:00 PM
I am working on the integration between CDL and R7 IDR SIEM and this is not working. I don't get pass the test connection on CDL.
https://docs.rapid7.com/insightidr/palo-alto-cortex-data-lake/
I am getting connection time out, I have followed these steps but the syslog server seems to be missing the trsuted certificate needed for communication with CDL. The machine is an Ubuntu machine and I have generated a cert using openssl req -x509 command.
Can anyone share if have don this integration before, and how can I get a cert from the trusted certificates for CDL? https://docs.paloaltonetworks.com/cortex/cortex-data-lake/cortex-data-lake-getting-started/get-start...
Thank you
12-28-2022 12:45 AM
Hi Tamara
Check Step 11. You can download client and CA cert and use them in NXLog app.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
