IMPORTANT ANNOUNCEMENT: On May 6, 2024, Carbon Black User eXchange (UeX) and Case Management will move to a new platform!
The Community will be in read-only mode starting April 19th, 7:00 AM PDT. Check out the blog post!
You will still be able to use the case portal to create and interact with your support cases until the transition, view more information here!

Cb Defense: What do the HTTP Error Codes for the SIEM Connector mean?

Cb Defense: What do the HTTP Error Codes for the SIEM Connector mean?


  • CB Defense Web Console: All Versions
  • CB Defense SIEM Connector: All Supported Versions


In the /var/log/cb/integrations/cb-defense-syslog/cb-defense-syslog.log, what do the HTTP errors mean?



  • HTTP 200: Successful response. This means a successful connection has been made.
  • HTTP 400: Bad request. Check the messages response for more information on errors encountered parsing the incoming payload.
  • HTTP 401: Unauthorized. Double check the X-Auth-Token authentication HTTP header to make sure that the Connector ID and API key are valid.
  • HTTP 404: Object not found. The requested object could not be found in the backend data store or it may have expired (over 30 days old, etc.)
  • HTTP 429: Rate limiting encountered. Try again in a minute.
  • HTTP 500: Internal server error. Check the messages response for more information.

Additional Notes

  • In addition, each message returns a boolean success indicator that indicates whether the operation was successful. The response contents should be further examined or processed only if the success indicator is true.
  • If there is another HTTP Error logged, or the above errors cannot be resolved, please Contact Support for Help
  • For a full list of HTTP Error Codes: Hypertext Transfer Protocol (HTTP) Status Code Registry


Related Content

Was this article helpful? Yes No
No ratings
Article Information
Creation Date: