Skip to main content
Question

Google Threat Intel ingestion to SECOPS platform

  • January 29, 2026
  • 4 replies
  • 88 views
Uppin
Forum|alt.badge.img+2

While ingesting the GTI ioc’s to secops observed a below where we are able to fetch the logs from the GTI and unable to ingest to secops.

textPayload: "Error occurred while fetching and ingesting malware data. Error: SSLError(MaxRetryError("HTTPSConnectionPool(host='chronicle.asia-south1.rep.googleapis.com', port=443): Max retries exceeded with url: /v1beta/projects/ [removed by moderator] /locations/asia-south1/instances/1eae0894-b5ea-4413-85de-42aaf69dc3233/logTypes/GCP_THREATINTEL/logs:import (Caused by SSLError(SSLEOFError(8, 'EOF occurred in violation of protocol (_ssl.c:2427)')))"))"

    4 replies

    kentphelps
    Staff
    Forum|alt.badge.img+12
    • kentphelps
    • Staff
    • February 4, 2026

    Which tier of Secops are you using?

    For Enterprise+ take a look here: Applied Threat Intelligence Overview

    For Standard and Enterprise that a look here: GTI BYOL Integration Guide

    Uppin
    Forum|alt.badge.img+2
    • Uppin
    • Author
    • New Member
    • February 5, 2026

    Using Enterprise tier. Followed the guide and configured as it and getting the “SSL TLS” error. The cloud function is able to pull the data from GTI but failing to ingest to SECOPS. 
     

    Rob_P
    Staff
    Forum|alt.badge.img+8
    • Rob_P
    • Staff
    • February 17, 2026

    Hello ​@Uppin 

    Are you still having issues with this BYOL Setup to get GTI Data directly into SecOps?  Please let me know and I’m happy to help troubleshoot further and test this in my Lab. 

    Thanks, 

    - Rob

    Uppin
    Forum|alt.badge.img+2
    • Uppin
    • Author
    • New Member
    • March 2, 2026

    Yes @rob_p still having facing an issue.

    Terms & ConditionsCookie settingsAccessibility statement
    Privacy Policy Terms of Service Gen AI Policy Community Guidelines Cookie Settings

    © 2025 Google. All rights reserved.