- 31 Dec 2024
- 1 Minute to read
- Print
- DarkLight
- PDF
Google Chronicle Security
- Updated on 31 Dec 2024
- 1 Minute to read
- Print
- DarkLight
- PDF
Google Chronicle Security is designed for enterprises to privately retain, analyze, and search security and network telemetry.
Types of Assets Fetched
This adapter fetches the following types of assets:
- Devices
Parameters
Host Name or IP Address (required, default: https://backstory.googleapis.com) - The hostname or IP address of the Google Chronicle Security server that Axonius can communicate with via the Required Ports. The format should be like the following example:
https://{REGION}.backstory.googleapis.com
.JSON Key pair for the service account (required) - Upload the JSON file you have created for your service account.
See Using OAuth 2.0 for Server to Server Applications | Authorization | Google for Developers for instructions on how to create a service account and the JSON key. In the OAuth scopes (comma-delimited) field, enter https://www.googleapis.com/auth/chronicle-backstory.Artifact Search Domain (required) - Specify the artifact domain name associated with the assets. The format should be like the following example:
TENANT.backstory.chronicle.security
.Verify SSL - Select whether to verify the SSL certificate of the server against the CA database inside of Axonius. For more details, see SSL Trust & CA Settings.
HTTPS Proxy (optional) - Connect the adapter to a proxy instead of directly connecting it to the domain.
HTTPS Proxy User Name (optional) - The user name to use when connecting to the value supplied in Host Name or IP Address via the value supplied in HTTPS Proxy.
HTTPS Proxy Password (optional) - The password to use when connecting to the server using the HTTPS Proxy.
To learn more about common adapter connection parameters and buttons, see Adding a New Adapter Connection.
APIs
Axonius uses Chronicle Search API | Chronicle Security | Google Cloud for the Devices endpoint and Authentication.
Required Ports
Axonius must be able to communicate with the value supplied in Host Name or IP Address via the following ports:
- TCP port 80/443
Required Permissions
The value supplied in JSON Key pair must be associated with credentials that have Read permissions to fetch assets.
Supported From Version
Supported from Axonius version 5.0