IBM Security QRadar SOAR

 View Only
  • 1.  Codegen with API Key Authentication

    IBM Champion
    Posted Wed February 26, 2020 04:02 PM
    All,

    I just setup my app.config file to use an API key and secret instead of a username and password combination. However, when I try to run resilient-circuits codegen I am getting an Internal Server Error. When I change my authentication back to a username and password combination it works fine.

    Here's the error output: 
    Traceback (most recent call last):
    File "/home/user/venv/bin/resilient-circuits", line 8, in <module>
    sys.exit(main())
    File "/home/user/venv/lib/python2.7/site-packages/resilient_circuits/bin/resilient_circuits_cmd.py", line 686, in main
    generate_code(args)
    File "/home/user/venv/lib/python2.7/site-packages/resilient_circuits/bin/resilient_circuits_cmd.py", line 298, in generate_code
    os.path.expanduser(output_base))
    File "/home/user/venv/lib/python2.7/site-packages/resilient_circuits/util/resilient_codegen.py", line 823, in codegen_package
    output_dir, None, False)
    File "/home/user/venv/lib/python2.7/site-packages/resilient_circuits/util/resilient_codegen.py", line 370, in codegen_from_template
    client.post(latest_export_uri, {"layouts": True, "actions": True, "phases_and_tasks": True})
    File "/home/user/venv/lib/python2.7/site-packages/resilient/co3.py", line 348, in post
    _raise_if_error(ex.get_response())
    File "/home/user/venv/lib/python2.7/site-packages/resilient/co3.py", line 211, in _raise_if_error
    raise SimpleHTTPException(response)
    resilient.co3.SimpleHTTPException: Internal Server Error: {"success":false,"title":null,"message":"Internal Server Error","hints":[],"error_code":"generic"}

    I'm wondering if this is expected? I have double checked that all of the permissions were given to this API key.

    Thanks,

    ------------------------------
    Liam Mahoney
    ------------------------------


  • 2.  RE: Codegen with API Key Authentication

    Posted Thu February 27, 2020 05:58 AM
    Hi Liam,

    Thanks for reaching out to the Community!

    Two questions:
    - What version of Resilient are you connecting to?
    - Have you added the API Key to the Message Destinations?

    Thanks!

    ------------------------------
    Shane Curtin
    Integrations Engineer - IBM Resilient
    ------------------------------



  • 3.  RE: Codegen with API Key Authentication

    Posted Thu February 27, 2020 09:42 AM
    Hi Shane,
    This occurs on Training session in Budapest, using v35.0, on multiple (all) machines
    we did the pip install circuits today, with fn_utilities and the latest "six" update requested by fn_utilities
    I did not check if it was corrected by HF / 35.x updates....

    ------------------------------
    BENOIT ROSTAGNI
    ------------------------------



  • 4.  RE: Codegen with API Key Authentication

    IBM Champion
    Posted Thu February 27, 2020 01:53 PM
    Shane,

    Connecting to version 35.1.75.

    I did not initially have the API key added to the message destination. I added the API Key to the message destination that i'm trying to include in the package, but i'm getting the same error. I've double checked that the API key is added to the message destination.

    ------------------------------
    Liam Mahoney
    ------------------------------



  • 5.  RE: Codegen with API Key Authentication

    Posted Fri February 28, 2020 08:24 AM
    Hi Liam,

    For Resilient version 35.0.x and 35.1.x codegen is not working with API Keys

    You can one of two things:
    - Upgrade Resilient so it is >= 35.2.x and continue to use API Keys with codegen
    - Avoid using API Keys in this version and create a user, add it to the Message Destination and the app.config

    ------------------------------
    Shane Curtin
    Integrations Engineer - IBM Resilient
    ------------------------------



  • 6.  RE: Codegen with API Key Authentication

    IBM Champion
    Posted Fri February 28, 2020 09:13 AM
    Thanks Shane!

    ------------------------------
    Liam Mahoney
    ------------------------------