|Applies To||RSA Security Analytics|
RSA NetWitness NextGen
RSA Security Analytics Log Decoder
|Issue||How to download raw logs from an RSA Security Analytics Log Decoder and automate the process using REST API.|
How do I download raw logs from a log decoder?
Raw logs can be downloaded from a log decoder using the REST interface following the steps below:
The process may also be automated with a script using the curl command, as shown: curl -uadmin "http://<LOG_DECODER_IP>:50102/sdk/packets?render=logs%time1=<START_TIME>&time2=<END_TIME>"
NOTE: The result comes back as a raw log and will need to be decoded accordingly.
|Legacy Article ID||a64692|