Closed indreshgithub1 closed 2 years ago
Hey @indreshgithub1 have you configured the audit log by following the directions here?
It seems like it's not pointing at your enterprise name.
@leftrightleft .
Yes. It was the case. Thanks for your reply.
The host name and enterprise name was incorrect. I have fixed the issue and now its working.
Regards, Indresh
Describe the bug
A clear and concise description of what the bug is. 05-13-2022 16:57:00.263 -0400 ERROR ExecProcessor - message from "/splunk/bin/python3.7 /splunk/etc/apps/github-audit-log-monitoring-add-on-for-splunk/bin/ghe_audit_log_monitoring.py" RuntimeError: Could not fetch audit log data. Please check your configuration, access token scope / correctness and API rate limits. status_code: 404 - url: https://github.com/api/graphql/enterprises/enterprise-name/audit-log?phrase=&include=all&after=&before=&order=asc&per_page=100 - Response: Not Found
05-13-2022 16:57:00.263 -0400 ERROR ExecProcessor - message from "/splunk/bin/python3.7 /splunk/etc/apps/github-audit-log-monitoring-add-on-for-splunk/bin/ghe_audit_log_monitoring.py" response.status_code, response.url, response.text To Reproduce
Steps to reproduce the behavior: . Go to '...'source = [/splunk/var/log/splunk/splunkd.log]
Expected behavior A clear and concise description of what you expected to happen.
Screenshots If applicable, add screenshots to help explain your problem.
Desktop (please complete the following information):
Additional context Add any other context about the problem here.