Verify connectivity for LogRhythm

  • Freigeben Version: Australia
  • Aktualisiert 12. März 2026
  • 1 Minute Lesedauer

    • Verify your connection to the LogRhythm Client Console by sending curl requests to test the LogRhythm REST API. The verification process is optional.

    Vorbereitungen

    Role required: sn_si.admin

    Warum und wann dieser Vorgang ausgeführt wird

    To verify the connection to the LogRhythm Client Console is working properly after you set up the LogRhythm REST APIs, send two curl requests from the computer hosting the MID Server you configured in Install the plugin and configure LogRhythm.

    The LogRhythm REST API uses WSSE for authentication, which requires some outside scripting to work with Curl and Postman.

    The LogRhythm REST API uses a token for authentication, so you can make the actual validation call that the integration uses. The “0” at the end of the URL is a LogRhythm Alarm ID. The LogRhythm REST API with a default configuration requires port 8501. This port number should be included in the URL that you plan to use for the test.

    Prozedur

    Update the URL <LogRhythm REST url> and token <api token> in the following curl request and send it to validate the LogRhythm REST API: curl -k -i -v --trace-time -o /dev/null -H "Content-Type: text/json" -H "Authorization: Bearer <api token>" "https://<cache drilldown url>/lr-drilldown-cache-api/drilldown/0"
    For a successful connection to the LogRhythm REST API, you should receive an HTTP 404, but the response body contains Alarm ID: 0 not found.