Skip to content

Commit

Permalink
Solution packaged
Browse files Browse the repository at this point in the history
  • Loading branch information
@v-prasadboke
v-prasadboke committed Jan 22, 2025
1 parent 6c6d570 commit 1bd418a
Show file tree
Hide file tree
Showing 3 changed files with 6 additions and 6 deletions.
4 changes: 2 additions & 2 deletions Solutions/CTERA/Data Connectors/CTERA_Data_Connector.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -37,14 +37,14 @@
{
"type": "IsConnectedQuery",
"value": [
"Syslog\n | where TimeGenerated > ago(3d)\n | where Message contains \"gw-audit[-]:\" or Message contains \"portal portal[-]:\"\n | take 1\n | project IsConnected = true"
"Syslog\n | where TimeGenerated > ago(3d)\n | where SyslogMessage contains \"gw-audit[-]:\" or Message contains \"portal portal[-]:\"\n | take 1\n | project IsConnected = true"
]
}
],
"dataTypes": [
{
"name": "Syslog (CTERA)",
"lastDataReceivedQuery": "Syslog\n | where Message contains \"gw-audit[-]:\" or Message contains \"portal portal[-]:\"\n | summarize Time = max(TimeGenerated)\n | where isnotempty(Time)"
"lastDataReceivedQuery": "Syslog\n | where SyslogMessage contains \"gw-audit[-]:\" or Message contains \"portal portal[-]:\"\n | summarize Time = max(TimeGenerated)\n | where isnotempty(Time)"
}
],
"availability": {
Expand Down
Binary file modified Solutions/CTERA/Package/3.0.1.zip
View file
Binary file not shown.
8 changes: 4 additions & 4 deletions Solutions/CTERA/Package/mainTemplate.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -182,14 +182,14 @@
{
"type": "IsConnectedQuery",
"value": [
"Syslog\n | where TimeGenerated > ago(3d)\n | where Message contains \"gw-audit[-]:\" or Message contains \"portal portal[-]:\"\n | take 1\n | project IsConnected = true"
"Syslog\n | where TimeGenerated > ago(3d)\n | where SyslogMessage contains \"gw-audit[-]:\" or Message contains \"portal portal[-]:\"\n | take 1\n | project IsConnected = true"
]
}
],
"dataTypes": [
{
"name": "Syslog (CTERA)",
"lastDataReceivedQuery": "Syslog\n | where Message contains \"gw-audit[-]:\" or Message contains \"portal portal[-]:\"\n | summarize Time = max(TimeGenerated)\n | where isnotempty(Time)"
"lastDataReceivedQuery": "Syslog\n | where SyslogMessage contains \"gw-audit[-]:\" or Message contains \"portal portal[-]:\"\n | summarize Time = max(TimeGenerated)\n | where isnotempty(Time)"
}
],
"availability": {
Expand Down Expand Up @@ -365,14 +365,14 @@
"dataTypes": [
{
"name": "Syslog (CTERA)",
"lastDataReceivedQuery": "Syslog\n | where Message contains \"gw-audit[-]:\" or Message contains \"portal portal[-]:\"\n | summarize Time = max(TimeGenerated)\n | where isnotempty(Time)"
"lastDataReceivedQuery": "Syslog\n | where SyslogMessage contains \"gw-audit[-]:\" or Message contains \"portal portal[-]:\"\n | summarize Time = max(TimeGenerated)\n | where isnotempty(Time)"
}
],
"connectivityCriterias": [
{
"type": "IsConnectedQuery",
"value": [
"Syslog\n | where TimeGenerated > ago(3d)\n | where Message contains \"gw-audit[-]:\" or Message contains \"portal portal[-]:\"\n | take 1\n | project IsConnected = true"
"Syslog\n | where TimeGenerated > ago(3d)\n | where SyslogMessage contains \"gw-audit[-]:\" or Message contains \"portal portal[-]:\"\n | take 1\n | project IsConnected = true"
]
}
],
Expand Down

0 comments on commit 1bd418a

Please sign in to comment.