API integration in Wazuh Kibana

[R VISHNU]

Dear Team,

I am trying to integrate Sophos endpoint security with Wazuh.

For both the solutions we need to work with API integration. When I was referring to Wazuh  documentation, I needed to provide a list of details like:url, port, username, password.

Sophos given the port number and URL. If I work with the given url and port and admin console credentials. IN kibana, I get results as offline 3005 forbidden.

I don't know to give which username and password. Whether it is admin console credentials or any username and password we need to create for API.

Pls, help me to fix this issue.

Thanks,

Vishnu

[R VISHNU]

team,

waiting for your response.

thanks,

vishnu

[Zimbawe998 Zimbawe998]

Hi Vishnu.

We already fone it using Sophos Siem Github script.

It's easy and it works like a charm.

Z

--
You received this message because you are subscribed to the Google Groups "Wazuh mailing list" group.
To unsubscribe from this group and stop receiving emails from it, send an email to wazuh+un...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/wazuh/CAKvsVghzHqZhYpz2eOtKQPOP9pW%3D3JLQt3FwCKKkCQY%2BF8B3BA%40mail.gmail.com.

[R VISHNU]

Can you please share the integration procedure, You have followed.

[Yana Zaeva]

Hi Vishnu,

My apologies for the late response. I think Zimbawe was talking about this script package, which export and alerts data from Sophos Central into a SIEM solution.

Hope this helps. Let us know if you need anything else.

Regards,
Yana.

[khawla Makhzoumi]

Bonjour à toutes et tous, je travaille sur un projet elasticsearch qui sert à surveiller l'état des serveurs comme apache je suis bloquée dans la partie de récupération des logs avec kibana

Pouvez-vous m'aider, svp ?   Merci