Configure a Cortex XSIAM engine to use a web proxy by editing the d1.conf file.
Proxy settings can be configured in an engine by adding them as an engine configuration.
Note
You need to configure Docker to use a proxy. When using a BlueCoat proxy, ensure you encode the values correctly.
On the machine where you installed the engine, navigate to the
d1.conffile and add the following keys.Key
Value
Description
http_proxyhttp://<user:password@proxy-server:port#>For example
http://user:password@proxy-server:3128Environment uses http proxy. Special characters must be escaped.
https_proxyhttps://user:password@proxy-server:port#For example,
https://user:password@proxy-server:3128Environment uses https proxy. Special characters must be escaped.
no_proxyhttp://<user:password@proxy-server:port#>For example
http://user:password@proxy-server:3128For specific addresses, a proxy bypass will by applied. Special characters must be escaped.
If the environment variables are not set, or you wish to use a different settings than those specified in the environment variables, set the configuration with your specific proxy details in the
d1.conffile. For example:{"http_proxy": "http://proxy.host.local:8080", "https_proxy": "https://proxy.host.local:8443" "no_proxy": "https://proxy.host.local:8020"}Save the file.
On the machine where you installed the engine, navigate to the
upgrade.conffile and edit the file to sethttps_proxyto your proxy address. For example,https_proxy="https://proxy.host.local:8443".Note
In a environment with a single engine, go to
/usr/local/demisto/upgrade.conf. In an environment with multiple engines, go to/usr/local/demisto/<engine-name>/upgrade.conf, replacing <engine-name> with the name of the engine.Note that the key in the
upgrade.conffile must behttps_proxy, even if your proxy address starts withhttp://.Save the file.