# Audit Logs Ingests Brinqa audit and security event logs for compliance monitoring and platform activity analysis. **Sync Type: Incremental** ## Requirements - A Brinqa instance with API access enabled - Valid Brinqa Platform credentials (username and password) - The hostname of your Brinqa environment (e.g., `ssb.brinqa.net`) ### Authentication The connector automatically handles API token generation using your Brinqa username and password. See [Brinqa API Documentation](https://docs.brinqa.com/docs/brinqa-api/#obtain-an-api-token) for details on how authentication works. **Important Notes:** - **MFA is not supported** - Since tokens expire every 24 hours and require automatic refresh, MFA-enabled accounts cannot be used. Please use an account without MFA or create a service account specifically for API access. - If using SSO authentication, you must set a password specifically for API access - The connector automatically refreshes tokens as needed (tokens are valid for 24 hours) - Your credentials grant the same permissions as your user access within the Brinqa Platform ### Obtain the Hostname - Note the hostname of your Brinqa environment from the URL - Typically in the format: `ssb.brinqa.net` or `{instance}.brinqa.net` ## Configuration The following configuration defines the input parameters. Each field's specifications, such as type, requirements, and descriptions, are detailed below. #### Settings | Setting | Type | Required | Description | | ------------------- | ------ | -------- | -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | | Hostname | string | Yes | The Brinqa environment hostname (e.g., ssb.brinqa.net) | | Backfill Start Time | string | No | The date to start fetching data from. If not specified, no past records will be fetched. | | API Rate Limit | object | No | Optional limit on the connector's outbound request rate to the source API. Leave blank to use the connector's default behavior. See [API Rate Limiting](../../../guides/rate-limiting) for the field format, limits, and how to choose a value. | #### Secrets | Secret | Type | Required | Description | | -------- | ------ | -------- | --------------------------------------------------------------------------------------------------------------- | | Username | string | Yes | Username for Brinqa platform authentication. If using SSO, you must set a password specifically for API access. | | Password | string | Yes | Password for Brinqa platform authentication. | ## Troubleshooting ### Common Issues 1. **Authentication Failures**: - Verify your username and password are correct - If using SSO, ensure you have set a password specifically for API access - Check that your user account has appropriate permissions to access audit logs 2. **Connection Errors**: - Verify the hostname is correct (e.g., `ssb.brinqa.net`) - Ensure your Brinqa instance is accessible from the Monad environment - Check network connectivity and firewall rules 3. **Backfill Time Validation**: - Ensure the backfill_start_time is not more than 30 days in the past - The connector will automatically adjust if a time beyond 30 days is specified - Leave blank to fetch all available data starting from today 4. **Rate Limiting**: - If you encounter rate limit errors, the connector will retry with exponential backoff - Adjust polling intervals if syncing too frequently 5. **No Data Retrieved**: - Verify that audit or security events actually exist in your Brinqa instance within the time range - Check that your user account has appropriate permissions - Review Monad logs for detailed error messages ## Related Articles - [Brinqa API Documentation - Obtain an API Token](https://docs.brinqa.com/docs/brinqa-api/#obtain-an-api-token) - [Brinqa Platform Documentation](https://docs.brinqa.com/) ## Sample Record ```json { "category": "Audit", "createdBy": "user@example.com", "dateCreated": "2026-02-10T14:30:00Z", "detail": "User login successful", "lastUpdated": "2026-02-10T14:30:00Z", "msg": "Login event", "outcome": "success", "severity": "info", "timestamp": "2026-02-10T14:30:00Z", "stacktrace": null, "user": "user@example.com" } ```