From a043283254ef3ef125536ac07ee1ee2c5d6c89b8 Mon Sep 17 00:00:00 2001 From: splunk-soar-connectors-admin Date: Wed, 25 Sep 2024 10:48:52 +0000 Subject: [PATCH] Update README.md --- README.md | 40 +++++++++++++++------------------------- 1 file changed, 15 insertions(+), 25 deletions(-) diff --git a/README.md b/README.md index 0c39b20..6f036c8 100644 --- a/README.md +++ b/README.md @@ -2,7 +2,7 @@ # Varonis SaaS Publisher: Varonis -Connector Version: 1.0.1 +Connector Version: 1.0.0 Product Vendor: Varonis Product Name: Varonis SaaS Product Version Supported (regex): ".\*" @@ -10,9 +10,8 @@ Minimum Product Version: 6.2.1 Varonis SaaS for Splunk SOAR -[comment]: # " File: README.md" -[comment]: # "" -[comment]: # " Copyright (c) Varonis, 2023" +[comment]: # "File: README.md" +[comment]: # "Copyright (c) Varonis, 2024" [comment]: # "" [comment]: # "This unpublished material is proprietary to Varonis SaaS. All" [comment]: # "rights reserved. The methods and techniques described herein are" @@ -31,27 +30,18 @@ Varonis SaaS for Splunk SOAR [comment]: # "either express or implied. See the License for the specific language governing permissions" [comment]: # "and limitations under the License." [comment]: # "" -Provide the following configuration settings for the integration setup to establish a successful -connection: - -- **Varonis FQDN** - Enter the Varonis Web Interface address. This is the Fully Qualified Domain - Name (FQDN) or IP address of the Varonis server to which you want to connect. -- **Varonis Api Key** - [API key - generation](https://help.varonis.com/s/document-item?bundleId=ami1661784208197&topicId=emp1703144742927.html&_LANG=enus) - . -- **Alert Retrieval Start Point** - Enter the past number of days from which to start retrieving - alerts. Up to 30 days and 1,000 alerts are supported. -- **Threat Detection Policies** - To retrieve alerts related to specific threat detection - policies, enter the relevant policy names. **Recomended: Leave this blank to retrive all Alerts - (default)** . -- **Alert Status** - Specify the Varonis alert status. -- **Alert Severity** - Specify the alert severity. - -For additional information, please check: [Our General -documentation](https://help.varonis.com/s/documents?page=1) . -Have a general inquiry or want to contact Varonis? [Contact -us](https://www.varonis.com/resources/support) . +Provide the following configuration settings for the integration setup to establish a successful connection: + +* **Varonis FQDN** - Enter the Varonis Web Interface address. This is the Fully Qualified Domain Name (FQDN) or IP address of the Varonis server to which you want to connect. +* **Varonis Api Key** - [API key generation](https://help.varonis.com/s/document-item?bundleId=ami1661784208197&topicId=emp1703144742927.html&_LANG=enus). +* **Alert Retrieval Start Point** - Enter the past number of days from which to start retrieving alerts. Up to 30 days and 1,000 alerts are supported. +* **Threat Detection Policies** - To retrieve alerts related to specific threat detection policies, enter the relevant policy names. **Recomended: Leave this blank to retrive all Alerts (default)**. +* **Alert Status** - Specify the Varonis alert status. +* **Alert Severity** - Specify the alert severity. + +For additional information, please check: [Our General documentation](https://help.varonis.com/s/documents?page=1). +Have a general inquiry or want to contact Varonis? [Contact us](https://www.varonis.com/resources/support). ### Configuration Variables The below configuration variables are required for this Connector to operate. These variables are specified when configuring a Varonis SaaS asset in SOAR. @@ -59,7 +49,7 @@ The below configuration variables are required for this Connector to operate. T VARIABLE | REQUIRED | TYPE | DESCRIPTION -------- | -------- | ---- | ----------- **base_url** | required | string | Varonis FQDN/IP the integration should connect to -**ingest_artifacts** | required | boolean | Should artifacts be ingested? +**ingest_artifacts** | required | boolean | Should artifacts be ingested **api_key** | required | password | Varonis API Key **ingest_period** | required | string | Alert Retrieval Start (Days Ago) **severity** | optional | string | Alert Severity