Skip to main content

Configuration

The plugin is executed by defining the corresponding parameters:

usage: pandora_o365 [-h] -c CLIENTID -t TENANTID -s SECRET [-p PREFIX]
                    [-g GROUP] [-i INTERVAL] [-d DATA_IN] [-l] [-n]
                    [--tmp TMP] [--log_agent LOG_AGENT]
                    [--tentacle_address TENTACLE_ADDRESS]
                    [--tentacle_port TENTACLE_PORT]

Pandora Office365 Status plugin ver. 2.0

optional arguments:
  -h, --help            show this help message and exit
  -c CLIENTID, --clientid CLIENTID
                        Authentication O365 client id
  -t TENANTID, --tenantid TENANTID
                        Authentication O365 Tenant id
  -s SECRET, --secret SECRET
                        Authentication O365 Secret
  -p PREFIX, --prefix PREFIX
                        Prefix for agent names, default O365
  -g GROUP, --group GROUP
                        Pandora agent group, default unknown
  -i INTERVAL, --interval INTERVAL
                        Agent interval in seconds, default: 300
  -d DATA_IN, --data_in DATA_IN
                        Pandora server datain directory, default:
                        /var/spool/pandora/data_in/
  -l, --logs            Get incidents messages to Pandora log collector
  -n, --nodata          Ignores module data (usefull for log retreaving only)
  --tmp TMP             Pandora temporary datain directory, default: /tmp/
  --log_agent LOG_AGENT
                        Defined agent_name for log storage, default: O365_logs
  --tentacle_address TENTACLE_ADDRESS
                        Define tentacle address for remote execution,
                        Default=none
  --tentacle_port TENTACLE_PORT
                        Define tentacle port for remote execution,
                        Default=41121

The required fields are the authentication fields: clientid, tenantid and secret.

If you run only with the required fields you will obtain the data of the Agents/modules corresponding to each service.
Optional fields:

PREFIX: Prefix for the agents generated by the plugin execution by default is O365.

GROUP: Group to which it will be marked in the XMls to assign the agents in Pandora. This group must exist in the environment, otherwise the agents will be assigned to the default group: unknown

INTERVAL: Interval defined for each agent created by default 300 seconds, it should be equal or superior to the plugin execution interval.

DATAIN: Location of the Pandora FMS environment data in directory, by default /var/spool/pandora/data_in.

TMP: Temporary directory where the data is stored before being copied to the data in. By default /tmp

LOGS: Enables the log capture of the o365 incident messages and sends them to the pandora log collector. (The log collector must be configured in the environment). By default disabled.

LOG_AGENT: only required when log capture is enabled, it defines in the agent name that will store the references to the collected logs. By default O365_logs.

NODATA: Ignores agent and module data, useful if you want to run the plugin only to collect logs. By default disabled

TENTACLE_ADRESS: Ip of the tentacle server to send the data to.

TENTACLE_PORT: Tentacle port, default is 41121.

Translated with www.DeepL.com/Translator (free version)

Back to top