IBM Resilient connector and actionedit

The IBM Resilient connector uses the RESILIENT REST v2 to create IBM Resilient incidents.

Connector configurationedit

IBM Resilient connectors have the following configuration properties.

Name
The name of the connector.
URL
IBM Resilient instance URL.
Organization ID
IBM Resilient organization ID.
API key ID
The authentication key ID for HTTP Basic authentication.
API key secret
The authentication key secret for HTTP Basic authentication.

Connector networking configurationedit

Use the Action configuration settings to customize connector networking configurations, such as proxies, certificates, or TLS settings. You can set configurations that apply to all your connectors or use xpack.actions.customHostSettings to set per-host configurations.

Preconfigured connector typeedit

 my-resilient:
   name: preconfigured-resilient-connector-type
   actionTypeId: .resilient
   config:
     apiUrl: https://elastic.resilient.net
     orgId: ES
   secrets:
     apiKeyId: testuser
     apiKeySecret: tokenkeystorevalue

Config defines information for the connector type.

apiUrl
An address that corresponds to URL.
orgId
An ID that corresponds to Organization ID.

Secrets defines sensitive information for the connector type.

apiKeyId
A string that corresponds to API key ID.
apiKeySecret
A string that corresponds to API Key secret. Should be stored in the Kibana keystore.

Define connector in Stack Managementedit

Define IBM Resilient connector properties.

IBM Resilient connector

Test IBM Resilient action parameters.

IBM Resilient params test

Action configurationedit

IBM Resilient actions have the following configuration properties.

Incident types
The type of the incident.
Severity code
The severity of the incident.
Name
A name for the issue, used for searching the contents of the knowledge base.
Description
The details about the incident.
Additional comments
Additional information for the client, such as how to troubleshoot the issue.

Configure IBM Resilientedit

IBM Resilient offers Instances, which you can use to test incidents.