Introduction to HP ArcSight ESM Web Services APIs



Similar documents
Using HP ArcSight API for data visualization

HP Project and Portfolio Management Center

Customize Mobile Apps with MicroStrategy SDK: Custom Security, Plugins, and Extensions

HP Operations Orchestration Software

The SkySQL Administration Console

IBM BPM V8.5 Standard Consistent Document Managment

Using the Monitoring and Report Viewer Web Services

SOA Software API Gateway Appliance 7.1.x Administration Guide

HP AppPulse Mobile. Adding HP AppPulse Mobile to Your Android App

Ulteo Open Virtual Desktop Installation

HP Vertica Integration with SAP Business Objects: Tips and Techniques. HP Vertica Analytic Database

TIBCO Spotfire Metrics Modeler User s Guide. Software Release 6.0 November 2013

Pervasive Data Integrator. Oracle CRM On Demand Connector Guide

ESET Secure Authentication Java SDK

Configuring Single Sign-On from the VMware Identity Manager Service to Office 365

HP Asset Manager. Implementing Single Sign On for Asset Manager Web 5.x. Legal Notices Introduction Using AM

Sentinel EMS v7.1 Web Services Guide

HP AppPulse Active. Software Version: 2.2. Real Device Monitoring For AppPulse Active

The full setup includes the server itself, the server control panel, Firebird Database Server, and three sample applications with source code.

Configuring Parature Self-Service Portal

Java Access to Oracle CRM On Demand. By: Joerg Wallmueller Melbourne, Australia

HP SiteScope. HP Vertica Solution Template Best Practices. For the Windows, Solaris, and Linux operating systems. Software Version: 11.

Installation documentation for Ulteo Open Virtual Desktop

HP Operations Orchestration Software

Deploying Microsoft Operations Manager with the BIG-IP system and icontrol

Exploiting the Web with Tivoli Storage Manager

Implementing SQI via SOAP Web-Services

vrecord User Manual Vegress Record 2.0 (vrecord) page 1 of 10

Your customer engagement transformation starts here

HP Operations Orchestration Software

IBM. Implementing SMTP and POP3 Scenarios with WebSphere Business Integration Connect. Author: Ronan Dalton

Configuration Guide - OneDesk to SalesForce Connector

A Sample OFBiz application implementing remote access via RMI and SOAP Table of contents

Fax User Guide 07/31/2014 USER GUIDE

1 Introduction FrontBase is a high performance, scalable, SQL 92 compliant relational database server created in the for universal deployment.

Note: With v3.2, the DocuSign Fetch application was renamed DocuSign Retrieve.

REMOTE ACCESS DDNS CONFIGURATION MANUAL

vcenter Operations Management Pack for SAP HANA Installation and Configuration Guide

A programming model in Cloud: MapReduce

How to Configure Web Authentication on a ProCurve Switch

Volume SYSLOG JUNCTION. User s Guide. User s Guide

PHP Language Binding Guide For The Connection Cloud Web Services

White Paper BMC Remedy Action Request System Security

Using Internet or Windows Explorer to Upload Your Site

Copyright 2013 Consona Corporation. All rights reserved

ArcSight Express Administration and Operations Course

Startup guide for Zimonitor

Deploying the BIG-IP LTM with the Cacti Open Source Network Monitoring System

Adeptia Suite 6.2. Application Services Guide. Release Date October 16, 2014

Backing up and restoring HP Systems Insight Manager 6.0 or greater data files in a Windows environment

2012 Nolio Ltd. All rights reserved

TIBCO ActiveMatrix BPM Integration with Content Management Systems Software Release September 2013

Java Web Services SDK

HP Service Manager. Software Version: 9.40 For the supported Windows and Linux operating systems. Application Setup help topics for printing

HP Operations Orchestration Software

Configuring Cisco CallManager IP Phones to Work With IP Phone Agent

To install Multifront you need to have familiarity with Internet Information Services (IIS), Microsoft.NET Framework and SQL Server 2008.

TIBCO Spotfire Metrics Prerequisites and Installation

Create New MyWorkKeys Account Quick-Start Guide for the ACT National Career Readiness Certificate (ACT NCRC )

1 Overview Configuration on MACH Web Portal 1

HP Quality Center. Software Version: Microsoft Word Add-in Guide

NEXT Analytics User Guide for Facebook

Deploying Intellicus Portal on IBM WebSphere

SYSPRO App Store: Registration Guide

HP TippingPoint Security Management System User Guide

CA APM Cloud Monitor. Scripting Guide. Release 8.2

Practice Fusion API Client Installation Guide for Windows

HP Service Manager. Software Version: 9.40 For the supported Windows and Linux operating systems. Knowledge Management help topics for printing

New Features for Sybase Mobile SDK and Runtime. Sybase Unwired Platform 2.1 ESD #2

Copyright Pivotal Software Inc, of 10

Cisco Video Surveillance Operations Manager Mobile App User Guide

The data between TC Monitor and remote devices is exchanged using HTTP protocol. Monitored devices operate either as server or client mode.

Installing and Using the Zimbra Reporting Tool

Sophos Mobile Control User guide for Windows Phone 8. Product version: 3.5

HP Application Lifecycle Management

EMC Documentum Content Services for SAP iviews for Related Content

Integrating LivePerson with Salesforce

LoadRunner and Performance Center v11.52 Technical Awareness Webinar Training

VMware vcenter Operations Manager Administration Guide

F-SECURE MESSAGING SECURITY GATEWAY

How to utilize Administration and Monitoring Console (AMC) in your TDI solution

Integration Overview. Web Services and Single Sign On

HOBOlink Web Services V2 Developer s Guide

Using the vcenter Orchestrator Plug-In for Microsoft Active Directory

Price list update. What this exercise is about What you should be able to do Introduction Requirements... 2

HP Universal CMDB. Software Version: Data Flow Management Best Practices

GRE Help Desk. Quick Guide. April Rev.2

Using the VMRC Plug-In: Startup, Invoking Methods, and Shutdown on page 4

Adobe Marketing Cloud Bloodhound for Mac 3.0

CRM Migration Manager for Microsoft Dynamics CRM. User Guide

LabVIEW Internet Toolkit User Guide

Online Data Services. Security Guidelines. Online Data Services by Esri UK. Security Best Practice

Active Directory Sync (AD) How to Setup

TIBCO ActiveMatrix BPM - Integration with Content Management Systems

TIBCO Runtime Agent Authentication API User s Guide. Software Release November 2012

HP ArcSight SIEM and data privacy best practices

Application Notes for Packaging and Deploying Avaya Communications Process Manager Sample SDK Web Application on a JBoss Application Server Issue 1.

Address Phone & Fax Internet

Transcription:

Introduction to HP ArcSight ESM Web Services APIs Shivdev Kalambi Software Development Manager (Correlation Team) #HPProtect

Agenda Overview Some applications of APIs ESM Web Services APIs Login Service Query Viewer Service Report Service Examples REST SOAP Q&A 3

Overview

Web Services APIs What are web services? Web services are typically application programming interfaces (API) or web APIs that can be accessed over a network, such as the Internet, and executed on a remote system hosting the requested services. External client Web Internal client Server that exposes Web Services (e.g. ESM) 5

ESM Web Services APIs in practice The idea is simple Fetch your data out of ESM and apply it to your business use case Risk Insight App: Periodically fetch Asset Data from ESM and calculate scores Custom Analytics: Fetch event data and plot geo coordinates as a bubbles on a map Command Line Utility: Fetch event data from ESM and send it to standard output 6

Got data? Prerequisites ESM Expertise: Intermediate Advanced Create the right content that needs to retrieved Knowhow of Web Services in general Ability to write code for simple SOAP/REST clients 100110011010101? 001101001101010 7

Use cases Top 10 most common events Fetch query viewer data Sample Query Viewer Fetch data Using REST Using SOAP 8

Use case 1 REST call to Login Service from a browser https://localhost:8443/www/core-service/rest/loginservice/login?login=admin&password=password Test the REST From the browser Invoke LoginService Copy the authtoken Invoke QueryViewerService Pass the QueryViewer ID https://localhost:8443/www/manager-service/rest/queryviewerservice/getmatrixdata?authtoken= &id= 21 9 Copyright 2014 2013 Hewlett-Packard Development Company, L.P. The information contained herein is is subject to to change without notice.

Use case 1 REST call to Query Viewer Service from a browser https://localhost:8443/www/manager-service/rest/queryviewerservice/getmatrixdata?authtoken= &id= QueryViewerService using REST QueryViewerService using SOAP 10

Use case 2 SOAP example using the SDK : Login Service // Set the Base URL System.setProperty("com.arcsight.coma.client.ws.baseURL", "https:// + host + "/www/"); // localhost:8443 // Get the LoginService and login LoginServiceClientFactory factory = new LoginServiceClientFactory(); LoginService service = factory.createclient(); String authtoken = service.login(null, admin, password ); // This authtoken is required in subsequent calls 11

Use case 2 SOAP example using the SDK : Query Viewer Service // Get the QueryViewerService and get the data QueryViewerServiceClientFactory factory = new QueryViewerServiceClientFactory (); QueryViewerService service = factory.createclient(); MatrixData md = service.getmatrixdata(authtoken, "cwswtlzgbabckipukvcyzlg=="); // Get the Column Names List<String> headers = md.getcolumnheaders(); int col = 0; for (String header : headers) { System.out.printf((col++%2 == 0? "%60s" : "%20s\n"), header); } // Get the Data List<ListWrapper> rows = md.getrows(); for (ListWrapper row : rows) { List value = row.getvalue(); for (Object obj : value) { System.out.printf((col++%2 == 0? "%60s" : "%20s\n"), obj); } } 12

Use case 2 Keep in mind I found that I needed the following static block to trust the hostname // Static Block static { HttpsURLConnection.setDefaultHostnameVerifier(new HostnameVerifier() { public boolean verify(string hostname, SSLSession session) { // Make sure that hostname is valid return true; } }); } 25 13 Copyright 2014 2013 Hewlett-Packard Development Company, L.P. The information contained herein is is subject to to change without notice.

Use case 3 REST call to Archive Report Service Step 1: Start the Report Generation https://localhost:8443/www/manager-service/rest/archivereportservice/initdefaultarchivereportdownloadbyid?authtoken=_&reportid=_&reporttype=manual Step 2: Get the Download ID and download the report https://localhost:8443/www/manager-service/fileservlet?file.command=download&file.id=downid 26 14 Copyright 2014 2013 Hewlett-Packard Development Company, L.P. The information contained herein is is subject to to change without notice.

Required libraries and interesting observations Tips from an end user Even though it s SOAP under the covers AXIS2 libraries didn t work manager-ws-client-1.2.0.release.107.jar core-ws-client-1.5.0.release.51.jar coma-infrastructure-1.4.0.release.240.jar For now, the SOAP APIs can only be written in Java and using these libraries I was not able to get it to work with AXIS2 libraries in the CLASSPATH Marshalling Errors Don t forget to implement a HostnameVerifier (by default it will NOT be a verified hostname) Documentation is available on Protect 724 27 15 Copyright 2014 2013 Hewlett-Packard Development Company, L.P. The information contained herein is is subject to to change without notice.

Recap Key takeaways REST for simple use cases SOAP For now, Java clients using the provided libraries GWT-RPC is also used by our UI team 28 16

Please give me your feedback Session 3139 Speaker Shivdev Kalambi Please fill out a survey. Hand it to the door monitor on your way out. Thank you for providing your feedback, which helps us enhance content for future events. 17

Thank you

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information