Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
830
Views
1
Helpful
4
Replies

openVulnQuery authorization issues

Go to solution
rstraube
Cisco Employee
Cisco Employee

‎04-06-2023 12:17 AM

Hi team,

I've followed the instructions and still get authorization errors while using openVulnQuery. So, I've registered an app on apiconsole.cisco.com with app type Service and grant type Client Credentials for Cisco PSIRT openVuln API. Unfortunately, the provided client id and secret don't seem to work.

Using the credentials with Postman, I can get the Bearer token but subsequent queries fail with "Not Authorized".

Using openVulnQuery, I get the following error messages:

requests.exceptions.HTTPError: 401 Client Error: Unauthorized for url: https://cloudsso.cisco.com/as/token.oauth2?client_id=p3bfx...&client_secret=WRCD...

What's wrong here? Any help would be appreciated.

cheers
rene

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
PR Oxman
Cisco Employee
Cisco Employee

‎04-10-2023 07:19 PM - edited ‎04-10-2023 07:34 PM

Hello Rene,

Application registered before March 1,2023 will be using URL https://cloudsso.cisco.com/as/token.oauth2 (being deprecated). For Application created beginning March 1, 2023 you will use https://id.cisco.com/oauth2/default/v1/token.

See https://raw.githubusercontent.com/api-at-cisco/Images/master/Whats_New_Doc.pdf for more information.

HTH

View solution in original post

4 Replies 4

Go to solution
PR Oxman
Cisco Employee
Cisco Employee

‎04-10-2023 07:19 PM - edited ‎04-10-2023 07:34 PM

Hello Rene,

Application registered before March 1,2023 will be using URL https://cloudsso.cisco.com/as/token.oauth2 (being deprecated). For Application created beginning March 1, 2023 you will use https://id.cisco.com/oauth2/default/v1/token.

See https://raw.githubusercontent.com/api-at-cisco/Images/master/Whats_New_Doc.pdf for more information.

HTH

Go to solution
rstraube
Cisco Employee
Cisco Employee
In response to PR Oxman

‎04-11-2023 12:36 AM

Thanks Paul, great information. I did not recognize the new domain for the API endpoint. It helped to get my Postman queries working now.

openVulnQuery (https://github.com/CiscoPSIRT/openVulnQuery) still does not work with old token generation URL.

cheers
rene

0 Helpful

Go to solution
PR Oxman
Cisco Employee
Cisco Employee
In response to rstraube

‎04-11-2023 12:45 AM

Thanks Rene,
I will check the OpenVulnQuery code. It will need to be updated.

Will try to get to that this week. Or at least prior to May 1st.

Regards

0 Helpful

Go to solution
PR Oxman
Cisco Employee
Cisco Employee
In response to PR Oxman

‎04-12-2023 03:25 PM

Hello
Changes to OpenVulnQuery were submitted and accepted to main branch; to support the new API changes.

Thanks.
0 Helpful
Customers Also Viewed These Support Documents