circle-check
Radiant Cases is here! Manage & investigate alerts in one place.
Learn morearrow-up-right
search
ProductBook a demoOpen app

Install the Grafana OpenSearch Plug-In to Query Radiant Alerts

Enable Grafana access to Radiant Alerts to create custom dashboards and visualizations.

In this guide, you will use the OpenSearch plug-in from Grafana's plug-in library to analyze and visualize alerts generated by Radiant Security. You will create the connector in Radiant Security, then install and configure the plug-in in Grafana.

circle-info

Note: Before following this guide, ensure you have completed the steps in the Install the Grafana Plug-In for Events guide.

hashtag
Requirements

hashtag
Configure the data connector in Radiant Security

  1. Log in to Radiant Securityarrow-up-right.

  2. From the navigation menu, click Settings > Data Connectors and click + Add Connector.

  3. Search for and select the Radiant Security Grafana Plug-In option from the list and then click Data Feeds.

  4. Under Select your data feeds, select Grafana Security Ops - Radiant Alerts and click Credentials.

  5. Under Credential Name, give the credential an identifiable name (e.g. Radiant-Security-Alerts).

  6. Under Required Credentials, in the Connector tag field enter a value. This value will act as the salt to randomize the unique Token you’ll download in the next step.

  7. Click Add Connector.

  8. Copy and save the connector Token value using the clipboard option or download the Token file. You will need this token to complete the configuration.

  9. Click Done to save your changes.

hashtag
Install the OpenSearch plug-in in Grafana

  1. In your Grafana instance, navigate to Administration > Plugins and data > Plugins.

  2. Search for OpenSearch.

  3. Select the OpenSearch plug-in and click Install.

hashtag
Create and configure a data source

circle-exclamation

Important note: All fields below are case sensitive.

After installing the OpenSearch plug-in, connect Grafana to Radiant Security by creating a new data source with your API token and endpoint URL.

  1. Click Add new data source and configure the following fields:

  2. For Name, enter a name for the plug-in (e.g. RS-Alert-Source).

  3. For URL, set the appropriate endpoint for your region:

    • US region: https://plugin.radiantsecurity.org/grafana-plugins-proxy/es

    • EU region: https://plugin.eu1.radiantsecurity.org/grafana-plugins-proxy/es .

  4. Under the Custom HTTP Headers section, click Add header and fill out the details:

    • Header: Authorization

    • Value: Bearer<ADD-SPACE><YOUR-RADIANT-TOKEN>

  5. In the OpenSearch Details section:

    • For Index name, enter: radiant_alerts

    • For Time field name, enter: createdOn

    • Click Get Version and Save. The value OpenSearch (compatibility mode) should populate automatically.

circle-info

Note: If you see the error "Failed to connect to server", check that all values above have been entered correctly.

  1. Click Save & test.

PreviousInstall the Grafana Plug-In to Query Events in the Radiant Log ManagerNextLog Search and Query

Last updated

Was this helpful?