Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Error 400 with MDE collector #2035

Closed
marckto-filigran opened this issue Dec 11, 2024 · 1 comment · Fixed by OpenBAS-Platform/collectors#74
Closed

Error 400 with MDE collector #2035

marckto-filigran opened this issue Dec 11, 2024 · 1 comment · Fixed by OpenBAS-Platform/collectors#74
Assignees
@Dimfacion
Labels
bug use for describing something not working as expected critical use to identify critical bug to fix ASAP solved The issue has been solved
Milestone
Release 1.9.2

Comments

@marckto-filigran
Copy link

Hello,

we have a http 400 error with the MDE collector:

Error collecting: APIError Code: 400 message: None error: MainError(additional_data={}, code='BadRequest', details=None, inner_error=InnerError(additional_data={}, client_request_id='96fa4e97-575d-4732-acdc-b3a63aec0ca3', date=DateTime(2024, 12, 11, 14, 33, 31, tzinfo=Timezone('UTC')), odata_type=None, request_id='cad88e59-9919-4a44-900e-3391c3483acb'), message="'summarize' operator: Failed to resolve scalar expression named 'TimeGenerated'. Fix semantic errors in your query.", target=None)
@marckto-filigran marckto-filigran added bug use for describing something not working as expected needs triage use to identify issue needing triage from Filigran Product team labels Dec 11, 2024
@jborozco jborozco added critical use to identify critical bug to fix ASAP and removed needs triage use to identify issue needing triage from Filigran Product team labels Dec 11, 2024
@RomuDeuxfois RomuDeuxfois added this to the Bugs backlog milestone Dec 11, 2024
@antoinemzs antoinemzs mentioned this issue Dec 11, 2024
Merged
4 tasks
@antoinemzs
Copy link
Contributor

Hi @marckto-filigran, thanks for this. All testing had went ok here on various openbas instances, however we only use a single tenant configuration for MS Defender.

I believe @Dimfacion is in touch with you currently but I have provisioned a tentative fix that circumvents the alleged error in your original post.

@jborozco jborozco mentioned this issue Dec 12, 2024
Closed
@RomuDeuxfois RomuDeuxfois added the solved The issue has been solved label Dec 12, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Dimfacion Dimfacion

Labels
bug use for describing something not working as expected critical use to identify critical bug to fix ASAP solved The issue has been solved
Projects
None yet
Milestone
Release 1.9.2
5 participants
@Dimfacion @jborozco @RomuDeuxfois @marckto-filigran @antoinemzs