About

Carbon Black Cloud is a cloud managed Endpoint protection, detection and response platform offering next-gen antivirus and full compatibility with Carbon Black EDR and Carbon Black Cloud Audit and Remediation

Why You Should Integrate

Integrating with Carbon Black Cloud will provide visibility into your endpoints being managed by Carbon Black Cloud.

How Does the Integration Work

This integration pulls device objects from Carbon Black Cloud.
This data is only used internally; we do not share it with any parties outside of Sevco. Refer to our privacy policy for details.

Configuration

1. Configure plugin:

2. Configure Name: OPTIONAL: You can give the configuration a name to provide an identifiable attribute of the configuration to delineate other similar configurations.

3. Activate Config: To enable this configuration and begin pulling data select "Activate". If you wish to save the configuration to come back later to finish, select "Save Draft". This will save the configuration, but keep it disabled until Activated.

Source Documentation

Creating credentials

You'll be asked to provide API ID & Key that Sevco will use to connect to Carbon Black Cloud. In order to create an API key you must first create or have a Custom Access level with the appropriate permissions defined in Required Permissions section.

To create an API key, following the instructions defined in the "Create an API Key" section of the Carbon Black Cloud Manages identities and roles

Required Permissions

The following Custom Access level permissions are required:

• Device.GeneralInformation: Read

To create a Custom Access level follow the instructions in the "Create an Access Level" section of the Carbon Black Cloud Manages identities and roles

API Documentation

https://developer.carbonblack.com/reference/carbon-black-cloud/cb-defense/latest/rest-api/

Contact Us

If you're having problems integrating a source, or if you've found something wrong in this document, please email us at [email protected].

Tags: <on-prem/cloud>,