Supported Cortex XSOAR versions: 6.8.0 and later.
This is the Digital Guardian ARC event collector integration for XSIAM. This integration was integrated and tested with version 3.10.0 of DigitalGuardianARCEventCollector
The integration fetch interval should be set to a minimum of "1 hour". If set to less, a quota error might be received.
Navigate to Settings > Integrations > Servers & Services.
Search for Digital Guardian ARC Event Collector.
Click Add instance to create and configure a new integration instance.
Parameter Description Required Auth Server URL (e.g. https://some_url.com) True Gateway Base URL (e.g. https://some_url.com) True Client ID True Client Secret Client Secret True Export Profile True First fetch time (Enter only number of days, integer) False Number of events per fetch False Trust any certificate (not secure) False Use system proxy settings False
Click Test to validate the URLs, token, and connection.
You can execute these commands from the Cortex XSOAR CLI, as part of an automation, or in a playbook. After you successfully execute a command, a DBot message appears in the War Room with the command details.
Gets events from Digital Guardian ARC product
|should_push_events||If true, the command will create events, otherwise it will only display them. Possible values are: true, false. Default is false.||Required|
|limit||Maximum results to return.||Optional|
|days||Number of days to get data. Default is 7.||Optional|
There is no context output for this command.