Hello Community,
We are facing an issue in cortex XDR integration error. (Screenshot attached). API has admin rights assigned. Does anyone face same error.
Solved! Go to Solution.
Can you try running above curl command removing -d '{}' and check. And also from connector actions try running action "Fetch Incidents" if this runs successful.
Also check this curl command works:
curl -k -X POST https://api-yourfqdn/public_api/v1/incidents/get_incidents -H "x-xdr-auth-id:{API_KEY_ID}" -H "Authorization:{API_KEY}" -H 'Accept: application/json' -H 'Content-Type: application/json' -d '{"request_data": {}}'
HI khanchand,
Can you specify Which authentication type you are selecting ?
Hi Renu,
Its Standard Key. And same is selected in Cortex while creating the key.
Can you try running this curl command to check with valid credentials:
curl -X POST https://api-{fqdn}/public_api/v1/distributions/get_versions/ -H "x-xdr-auth-id:{API_KEY_ID}" -H "Authorization:{API_KEY}" -H "Content-Type:application/json" -d '{}'
Can you try running above curl command removing -d '{}' and check. And also from connector actions try running action "Fetch Incidents" if this runs successful.
Also check this curl command works:
curl -k -X POST https://api-yourfqdn/public_api/v1/incidents/get_incidents -H "x-xdr-auth-id:{API_KEY_ID}" -H "Authorization:{API_KEY}" -H 'Accept: application/json' -H 'Content-Type: application/json' -d '{"request_data": {}}'
Hi Renu,
Its working now by generating another API account.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.