This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(28.799999999999997, 44%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKW%3C/text%3E%3C/svg%3E)
Good Day!
I would like to ask if there is some way to handle the parameters for Session type authentication in CCP Sentinel.
"instructionSteps": [
{
"title": "Example",
"description": "Ex Code",
"instructions": [
{
"parameters": {
"enable": "true",
"userRequestPlaceHoldersInput": [
{
"displayText": "Access Controller URL",
"pollingKeyPaths":["$.auth.queryParameters.sessionRequestLoginUri","$.request.apiEndpoint"],
"placeHolderName": "{{AC_URL}}",
"placeHolderValue": "https://example.site.here"
},
{
"displayText": "Readonly Account",
"pollingKeyPaths":["$.auth.queryParameters.username"],
"placeHolderName": "{{AC_USERNAME}}",
"placeHolderValue": "sentinel_agent"
},
{
"displayText": "User Password",
"pollingKeyPaths":["$.auth.queryParameters.password"],
"placeHolderName": "{{AC_USER_PASSWORD}}",
"placeHolderValue": ""
}
]
}
}
]
}
]
},
"pollingConfig": {
"owner": "ASI",
"version": "2.0",
"source": "PaaS",
"auth": {
"authType": "Session",
"sessionRequestLoginUri": "{{AC_URL}}/session",
"queryParameters": {
"username": "{{AC_USERNAME}}",
"password": "{{AC_USER_PASSWORD}}"
}
},
"request": {
"apiEndpoint": "{{AC_URL}}/events",
"rateLimitQPS": 50,
"queryWindowInMin": 5,
"httpMethod": "Get",
"queryTimeFormat": "yyyy-MM-ddTHH:mm:ssZ",
"retryCount": 3,
"timeoutInSeconds": 60,
"headers": {
"Accept": "application/json",
"User-Agent": "Scuba"
}
},
"paging": {
"pagingType": "None"
},
"response": {
"eventsJsonPaths": [
"$"
]
}
}
It is based on Github example from your showcase.
However after succesfull deployment, the connector itself is not parsed in correct way in sentinel with throwing error:
The following codeless connectors are not valid, and will not be displayed: Connector display name: Example, ConnectorId: /subscriptions/
@Krzysztof Świdrak
Thank you for your post!
Basic, APIKey, OAuth2, Session, CiscoDuo) can be set?
"auth": {
"authType": "Session",
The following codeless connectors are not valid, and will not be displayed... ConnectorKind: APIPolling. Try to update the solution, if there is an update available Additional Link:
Configure your connector's polling settings
Any additional information or screenshots would be greatly appreciated!
If you have any other questions, please let me know.
Thank you for your time and patience throughout this issue.
Thanks!
1) I am asking about that I would like (before connecting) to provide few dynamic data of my server - "Session" parameter should be used (as I understand this is form based authentication - right?)
So I would like to create 3 inputs from user to connect data connector:
2) https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/GitHub/Data%20Connectors
This was the example I have used
Basically it should be a simple connector that will use credentials to read a page with events from server with form-based login (aka Session). The response is in json table.
@JamesTran-MSFT does it gives you any idea what may be wrong and why the ARM template is correctly deployed while the Sentinel Page results with error and not parsing the parameters at all?
The example provides one parameter input and APIKey - however I need to use session auth instead of API keys.
@Krzysztof Świdrak
Thank you for following up on this and I apologize for the delayed response!
From our GitHub (Preview) documentation and the GitHub sample that you shared, it seems like the only parameter's available, as you mentioned are the parameter input and API Key.
However, since you need to use Session authType parameter instead of API keys, I've reached out to our Sentinel team to see if this is possible within the GitHub Preview feature and will update as soon as possible.
If you have any other questions, please let me know.
Thank you for your time and patience throughout this issue.
@JamesTran-MSFT
Any updates? Can I anywhere find information about passing parameters dynamically to "Session" auth?
The internal Azure Support also did not know how to proceed with the Session one and I cannot in any way debug the JSON to Connector parsing.
Thank you for following up on this!
I haven't received a response from our Sentinel team, but can you share your Support Request number I can reach out again to see if using the Session authType parameter instead of API key is a supported.
If you have any other questions, please let me know.
Thank you for your time and patience throughout this issue.
I received a response from our Sentinel PG team and Session auth type is currently not supported. If you'd like this feature to be supported, I'd recommend leveraging our User Voice forum and creating a feature request, so our engineering team can look into implementing this.
I've also created an internal feature request, so our engineering team is aware of this as well.
Thank you again for your time and patience.