diff --git a/Solutions/Vectra XDR/Data Connectors/VectraDataConnector/azuredeploy_Connector_VectraXDR_AzureFunction.json b/Solutions/Vectra XDR/Data Connectors/VectraDataConnector/azuredeploy_Connector_VectraXDR_AzureFunction.json index db2835edd6d..1791bdddd23 100644 --- a/Solutions/Vectra XDR/Data Connectors/VectraDataConnector/azuredeploy_Connector_VectraXDR_AzureFunction.json +++ b/Solutions/Vectra XDR/Data Connectors/VectraDataConnector/azuredeploy_Connector_VectraXDR_AzureFunction.json @@ -10,73 +10,121 @@ }, "WorkspaceID": { "type": "string", - "minLength": 1 + "minLength": 1, + "metadata": { + "description": "Enter Workspace ID of Log Analytics Workspace" + } }, "WorkspaceKey": { "type": "securestring", - "minLength": 1 + "minLength": 1, + "metadata": { + "description": "Enter Primary Key of Log Analytics Workspace" + } }, "VectraBaseURL": { "type": "string", "metadata": { - "description": "BaseURL starting with \"https://\" followed by hostname" + "description": "Enter BaseURL starting with \"https://\" followed by hostname (Example: https://[your-vectra-instance-name])" } }, "VectraClientId - Health": { "type": "string", - "defaultValue": "" + "defaultValue": "", + "metadata": { + "description": "Enter Vectra Client ID for Health API Authentication" + } }, "VectraClientSecretKey - Health": { "type": "securestring", - "defaultValue": "" + "defaultValue": "", + "metadata": { + "description": "Enter Vectra Client Secret for Health API Authentication" + } }, "VectraClientId - Entity Scoring": { "type": "string", - "defaultValue": "" + "defaultValue": "", + "metadata": { + "description": "Enter Vectra Client ID for Entity Scoring API Authentication" + } }, "VectraClientSecretKey - Entity Scoring": { "type": "securestring", - "defaultValue": "" + "defaultValue": "", + "metadata": { + "description": "Enter Vectra Client Secret for Entity Scoring API Authentication" + } }, "VectraClientId - Detections": { "type": "string", - "defaultValue": "" + "defaultValue": "", + "metadata": { + "description": "Enter Vectra Client ID for Detection API Authentication" + } }, "VectraClientSecretKey - Detections": { "type": "securestring", - "defaultValue": "" + "defaultValue": "", + "metadata": { + "description": "Enter Vectra Client Secret for Detection API Authentication" + } }, "VectraClientId - Audits": { "type": "string", - "defaultValue": "" + "defaultValue": "", + "metadata": { + "description": "Enter Vectra Client ID for Audit API Authentication" + } }, "VectraClientSecretKey - Audits": { "type": "securestring", - "defaultValue": "" + "defaultValue": "", + "metadata": { + "description": "Enter Vectra Client Secret for Audit API Authentication" + } }, "VectraClientId - Lockdown": { "type": "string", - "defaultValue": "" + "defaultValue": "", + "metadata": { + "description": "Enter Vectra Client ID for Lockdown API Authentication" + } }, "VectraClientSecretKey - Lockdown": { "type": "securestring", - "defaultValue": "" + "defaultValue": "", + "metadata": { + "description": "Enter Vectra Client Secret for Lockdown API Authentication" + } }, "VectraClientId - Host-Entity": { "type": "string", - "defaultValue": "" + "defaultValue": "", + "metadata": { + "description": "Enter Vectra Client ID for Host Entity API Authentication" + } }, "VectraClientSecretKey - Host-Entity": { "type": "securestring", - "defaultValue": "" + "defaultValue": "", + "metadata": { + "description": "Enter Vectra Client Secret for Host Entity API Authentication" + } }, "VectraClientId - Account-Entity": { "type": "string", - "defaultValue": "" + "defaultValue": "", + "metadata": { + "description": "Enter Vectra Client ID for Account Entity API Authentication" + } }, "VectraClientSecretKey - Account-Entity": { "type": "securestring", - "defaultValue": "" + "defaultValue": "", + "metadata": { + "description": "Enter Vectra Client Secret for Account Entity API Authentication" + } }, "KeyVaultName": { "type": "string", @@ -84,7 +132,7 @@ "description": "Enter name of keyvault where tokens will be stored" } }, - "AzureClientId": { + "AzureClientID": { "type": "string", "minLength": 1, "metadata": { @@ -98,7 +146,7 @@ "description": "Enter Azure Client Secret that you have created during creating the client secret" } }, - "TenantId":{ + "TenantID":{ "type": "string", "minLength": 1, "metadata": { @@ -126,6 +174,9 @@ "AuditsTableName": { "type": "string", "defaultValue": "Audits_Data", + "metadata": { + "description": "Enter name of the table used to store Audit logs. Default is 'Audits_Data'" + }, "allowedValues": [ "Audits_Data" ] @@ -133,6 +184,9 @@ "DetectionsTableName": { "type": "string", "defaultValue": "Detections_Data", + "metadata": { + "description": "Enter name of the table used to store Detection logs. Default is 'Detections_Data'" + }, "allowedValues": [ "Detections_Data" ] @@ -140,6 +194,9 @@ "EntityScoringTableName": { "type": "string", "defaultValue": "Entity_Scoring_Data", + "metadata": { + "description": "Enter name of the table used to store Entity Scoring logs. Default is 'Entity_Scoring_Data'" + }, "allowedValues": [ "Entity_Scoring_Data" ] @@ -147,6 +204,9 @@ "LockdownTableName": { "type": "string", "defaultValue": "Lockdown_Data", + "metadata": { + "description": "Enter name of the table used to store Lockdown logs. Default is 'Lockdown_Data'" + }, "allowedValues": [ "Lockdown_Data" ] @@ -154,6 +214,9 @@ "HealthTableName": { "type": "string", "defaultValue": "Health_Data", + "metadata": { + "description": "Enter name of the table used to store Health logs. Default is 'Health_Data'" + }, "allowedValues": [ "Health_Data" ] @@ -161,62 +224,66 @@ "EntitiesTableName": { "type": "string", "defaultValue": "Entities_Data", + "metadata": { + "description": "Enter name of the table used to store Entities logs. Default is 'Entities_Data'" + }, "allowedValues": [ "Entities_Data" ] }, "LogLevel": { "type": "string", - "defaultValue": "INFO", "metadata": { - "description": "Please select log level or log severity value. By default it is set to INFO." + "description": "Add log level or log severity value. Default is 'INFO'" }, "allowedValues": [ - "DEBUG", - "INFO", - "ERROR" - ] + "Debug", + "Info", + "Error", + "Warning" + ], + "defaultValue": "Info" }, "LockdownSchedule": { "type": "string", "defaultValue": "0 0/10 * * * *", "metadata": { - "description": "Enter a valid Quartz cron-expression. The default value is every 10 minutes starting from Minute :00 of every hour." + "description": "Enter a valid Quartz Cron-Expression. The default value is every 10 minutes starting from Minute :00 of every hour" } }, "HealthSchedule": { "type": "string", "defaultValue": "0 1/10 * * * *", "metadata": { - "description": "Enter a valid Quartz cron-expression. The default value is every 10 minutes starting from Minute :01 of every hour." + "description": "Enter a valid Quartz Cron-Expression. The default value is every 10 minutes starting from Minute :01 of every hour" } }, "DetectionsSchedule": { "type": "string", "defaultValue": "0 2/10 * * * *", "metadata": { - "description": "Enter a valid Quartz cron-expression. The default value is every 10 minutes starting from Minute :02 of every hour." + "description": "Enter a valid Quartz Cron-Expression. The default value is every 10 minutes starting from Minute :02 of every hour" } }, "AuditsSchedule": { "type": "string", "defaultValue": "0 5/10 * * * *", "metadata": { - "description": "Enter a valid Quartz cron-expression. The default value is every 10 minutes starting from Minute :05 of every hour." + "description": "Enter a valid Quartz Cron-Expression. The default value is every 10 minutes starting from Minute :05 of every hour" } }, "EntityScoringSchedule": { "type": "string", "defaultValue": "0 8/10 * * * *", "metadata": { - "description": "Enter a valid Quartz cron-expression. The default value is every 10 minutes starting from Minute :08 of every hour." + "description": "Enter a valid Quartz Cron-Expression. The default value is every 10 minutes starting from Minute :08 of every hour" } }, "EntitiesSchedule": { "type": "string", "defaultValue": "0 9/10 * * * *", "metadata": { - "description": "Enter a valid Quartz cron-expression. The default value is every 10 minutes starting from Minute :09 of every hour." + "description": "Enter a valid Quartz Cron-Expression. The default value is every 10 minutes starting from Minute :09 of every hour" } }, "AppInsightsWorkspaceResourceID": { @@ -387,9 +454,9 @@ "HealthSchedule": "[parameters('HealthSchedule')]", "EntitiesSchedule": "[parameters('EntitiesSchedule')]", "KeyVaultName": "[parameters('KeyvaultName')]", - "AZURE_CLIENT_ID": "[parameters('AzureClientId')]", + "AZURE_CLIENT_ID": "[parameters('AzureClientID')]", "AZURE_CLIENT_SECRET": "[parameters('AzureClientSecret')]", - "AZURE_TENANT_ID": "[parameters('TenantId')]", + "AZURE_TENANT_ID": "[parameters('TenantID')]", "IncludeScoreDecrease": "[parameters('IncludeScoreDecrease')]", "Function_App_Name": "[variables('FunctionName')]", "Azure_Resource_Group_Name": "[resourceGroup().name]",