Carbon Black Cloud is a cloud managed Endpoint protection, detection and response platform offering next-gen antivirus and full compatibility with Carbon Black EDR and Carbon Black Cloud Audit and Remediation
Integrating with Carbon Black Cloud will provide visibility into your endpoints being managed by Carbon Black Cloud.
This integration pulls device objects from Carbon Black Cloud.
- Configure plugin:
|The URL of your CB Defense (Cloud) instance|
|The ID of your API Key|
|The API secret used to authenticate with the source|
|Your [organization Key] (https://developer.carbonblack.com/reference/carbon-black-cloud/authentication/#org-key)|
Configure Name: OPTIONAL: You can give the configuration a name to provide an identifiable attribute of the configuration to delineate other similar configurations.
Activate Config: To enable this configuration and begin pulling data select "Activate". If you wish to save the configuration to come back later to finish, select "Save Draft". This will save the configuration, but keep it disabled until Activated.
You'll be asked to provide API ID & Key that Sevco will use to connect to Carbon Black Cloud. In order to create an API key you must first create or have a Custom Access level with the appropriate permissions defined in Required Permissions section.
To create an API key, following the instructions defined in the "Create an API Key" section of the Carbon Black Cloud Manages identities and roles
The following Custom Access level permissions are required:
- Device.GeneralInformation: Read
To create a Custom Access level follow the instructions in the "Create an Access Level" section of the Carbon Black Cloud Manages identities and roles
If you're having problems integrating a source, or if you've found something wrong in this document, please email us at [email protected].
Updated about 1 month ago