Configure Cortex XSOAR engines by editing the d1.conf file or modifying the configuration in the UI (for shell installations).
When installing an engine, a d1.conf file is installed on your machine. Some configurations can only be done by editing the d1.conf file. If you install via Shell, you can edit the configuration in the UI as well as edit the file directly.
A use case for modifying the engine configuration is if you want to generate engine logs for a specific log level.
Edit the d1.conf file
On the machine on which you installed the engine, navigate to the
d1.conffile:Installation Type
Location
RPM, DEB, Shell
/usr/local/demistoIf using multiple engines, the location is
/usr/local/demisto/. For example,name of the engine>/usr/local/demisto/d1_e1ZIP
Same folder as the binary.
Modify the file as required. See Common properties when editing an engine configuration
You can also Configure the engine to use a web proxy.
Modify the configuration in Cortex XSOAR (Shell installations only)
Ensure that the data is in JSON format. The properties that you specify override the values defined in the d1.conf file.
From the engines table, select the engine for which you want to modify the configuration.
Click Edit Configuration.
In the JSON formatted configuration dialog box, modify the properties as required. For more information, see Common properties when editing an engine configuration.
Common properties when editing an engine configuration
The following table describes the common properties when editing an engine configuration using the d1.conf file (located by default at /usr/local/demisto/) or in the JSON formatted configuration dialog box in Cortex XSOAR.
Property | Type | Values | Edit |
|---|---|---|---|
| String | The IP address of the HTTP proxy through which the engine communicates. For an example, see Configure the engine to use a web proxy. | The engine |
| String | The IP address of the HTTP/s proxy through which the engine communicates. For an example, see Configure the engine to use a web proxy. | The engine |
| String |
| The engine |
| String | The maximum size in MB to retain log files based. Default is 20 MB. | |
| String | The maximum number of log files to retain. Default is 3. | |
| String | The maximum number of days to retain old log files based on the time stamp encoded in the file name. Default is 0 (not to retain old log files based on age). NoteA day is defined as 24 hours and may not exactly correspond to calendar days due to daylight savings, leap seconds, etc. | |
| String | The port on which the engine listens for agent connection requests and communication task responses. | The engine |
| String array | An array of tenant addresses to which the engine tries to connect. If you change the tenant URL, you need to update this parameter. NoteIn addition, to support engine upgrades from the UI, edit the | The engine |
| String | Path to the | The engine |
| String | The maximum time in minutes the engine will try to reconnect after losing communication. Default is 600 (10 hours). NoteIf the engine loses communication for longer than this time, it will disconnect and you need to restart the service. | The engine |