Skip to main content

Cohesity Helios Event Collector

This Integration is part of the Cohesity Helios Pack.#

Supported versions

Supported Cortex XSOAR versions: 8.2.0 and later.

This is the Cohesity Helios Event Collector integration for XSIAM.

This is the default integration for this content pack when configured by the Data Onboarder in Cortex XSIAM.

Configure Cohesity Helios Event Collector on Cortex XSOAR#

  1. Navigate to Settings > Integrations > Servers & Services.

  2. Search for Cohesity Helios Event Collector.

  3. Click Add instance to create and configure a new integration instance.

    ParameterDescriptionRequired
    Server URL (e.g. https://helios.cohesity.com)True
    API KeyThe API Key to use for connectionFalse
    The maximum number of events per type. Default is 50000.The collector pulls both Audit Logs and Alerts. This parameter sets the the maximum fetch number limit for each type.False
    Trust any certificate (not secure)False
    Use system proxy settingsFalse
  4. Click Test to validate the URLs, token, and connection.

Commands#

You can execute these commands from the CLI, as part of an automation, or in a playbook. After you successfully execute a command, a DBot message appears in the War Room with the command details.

cohesity-helios-get-events#


Gets events from Cohesity Helios.

Base Command#

cohesity-helios-get-events

Input#

Argument NameDescriptionRequired
should_push_eventsIf true, the command will create events, otherwise it only displays them. Possible values are: true, false. Default is false.Required
limitMaximum results to return.Optional
start_timeSpecifies the start time of the alerts to be returned.Required
end_timeSpecifies the end time of the alerts to be returned. Default is Now.Required

Context Output#

There is no context output for this command.