Rapid7 InsightOPs
App Vendor: Rapid7 InsightOPs
App Category: Analytics & SIEM
Connector Version: 1.0.0
API Version: 1.0.0
About App
Rapid7 InsightOps is an easy-to-use log management and analytics service for teams of all sizes. It is an operations center for endpoint visibility and infrastructure analytics. It combines live endpoint visibility with log analytics, creating one console for total infrastructure awareness. It provides world-class search capabilities, enhanced log analysis tooling, and the ability to monitor and query the real-time state of your infrastructure.
The Rapid7 InsightOPs app is configured with the Orchestrate application to perform the following actions:
Action Name | Description |
|---|---|
Get All Logs | This action retrieves details of all logs for your account. |
Get Log Sets | This action retrieves details of all log sets for your account. |
Get Query | This action lets you perform LEQL queries to return log data. |
Get All Saved Queries | This action retrieves a list of all saved queries for an account. |
Get All Tags | This action retrieves a list of all tags for an account. |
Create Query | This action can be used to post a new query. |
Configuration Parameters
The following configuration parameters are required for the Rapid7 InsightOPs app to communicate with the Rapid7 InsightOPs enterprise application. The parameters can be configured by creating instances in the app.
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
API Key | Enter your Rapid7 InsightOPs API key. Example: 00112233-4455-6677-8899-aabbccddeeff | Text | Required | |
Region | Enter the region where you are located. Example: eu | Text | Required | Allowed values:
|
Action: Get All Logs
This action retrieves details of all logs for your account.
Action Input Parameters
This action does not require any input parameters.
Action: Get All Log Sets
This action retrieves details of all log sets for your account.
Action Input Parameters
This action does not require any input parameters.
Action: Get Query
This action lets you perform LEQL queries to return log data.
You can construct LEQL queries through an API interface the same way that you would in the UI.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Log ID | Enter the log id for which you want to retrieve details. Example: 3aa5da13-3bb6-4457-ab6c-0d6b01ec892d | Text | Optional | |
Query | Enter the query for which you want to retrieve details. | Text | Required | |
From Time | Enter the start time, in UNIX format, from when you want to fetch details. Example: 1634653036 | Text | Required | Enter time in the UNIX format. |
End Time | Enter the end time, in UNIX format, till when you want to fetch details. Example: 1634653036 | Text | Required | Enter time in the UNIX format. |
Example Request
[
{
"log_id": "3aa5da13-3bb6-4457-ab6c-0d6b01ec892d",
"query": "",
"from_time": "1634553036",
"to_time": "1634653036"
}
]Action: Get All Saved Queries
This action retrieves a list of all saved queries for an account.
Action Input Parameters
This action does not require any input parameters.
Action: Get All Tags
This action retrieves a list of all tags for an account.
Action Input Parameters
This action does not require any input parameters.
Action: Create Query
This action creates and saves a new query.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Log ID | Enter the log id for which you want to retrieve details. Example: 3aa5da13-3bb6-4457-ab6c-0d6b01ec892d | Text | Required | |
Statement | Enter the run clause for the query. | Text | Required | |
From time | Enter the time, in UNIX format, from when you want to fetch details. Example: 1634653036 | Text | Required | Enter time in the UNIX format. |
End time | Enter the end time, in UNIX format, till when you want to fetch details. Example: 1634653036 | Text | Required | Enter time in the UNIX format. |
Example Request
[
{
"log_id": "3aa5da13-3bb6-4457-ab6c-0d6b01ec892d",
"statement": "",
"from_time": "1634553036",
"to_time": "1634653036"
}
]