Skip to main content

Digital Guardian ARC Event Collector

This Integration is part of the Digital Guardian Pack.#

Supported versions

Supported Cortex XSOAR versions: 6.8.0 and later.

This is the Digital Guardian ARC event collector integration for XSIAM. This integration was integrated and tested with version 3.10.0 of DigitalGuardianARCEventCollector

This is the default integration for this content pack when configured by the Data Onboarder in Cortex XSIAM.

Known Limitations#

The integration fetch interval should be set to a minimum of "1 hour". If set to less, a quota error might be received.

Configure Digital Guardian ARC Event Collector on Cortex XSOAR#

  1. Navigate to Settings > Integrations > Servers & Services.

  2. Search for Digital Guardian ARC Event Collector.

  3. Click Add instance to create and configure a new integration instance.

    ParameterDescriptionRequired
    Auth Server URL (e.g. https://some_url.com)True
    Gateway Base URL (e.g. https://some_url.com)True
    Client IDTrue
    Client SecretClient SecretTrue
    Export ProfileTrue
    First fetch time (Enter only number of days, integer)False
    Number of events per fetchFalse
    Trust any certificate (not secure)False
    Use system proxy settingsFalse
  4. Click Test to validate the URLs, token, and connection.

Commands#

You can execute these commands from the Cortex XSOAR CLI, as part of an automation, or in a playbook. After you successfully execute a command, a DBot message appears in the War Room with the command details.

digital-guardian-get-events#


Gets events from Digital Guardian ARC product

Base Command#

digital-guardian-get-events

Input#

Argument NameDescriptionRequired
should_push_eventsIf true, the command will create events, otherwise it will only display them. Possible values are: true, false. Default is false.Required
limitMaximum results to return.Optional
daysNumber of days to get data. Default is 7.Optional

Context Output#

There is no context output for this command.