CrowdStrike Falcon provides device protection through its real-time threat detection, behavioral analytics, and machine learning capabilities, which work together to identify and respond to security threats effectively. Its endpoint detection and response (EDR) features allow organizations to swiftly investigate and mitigate threats, bolstering the security of their devices against potential cyberattacks.
Integrating with Crowdstrike will provide visibility into devices with the agent installed to identify your endpoint coverage and state.
This integration pulls device objects and associated information from Crowdstrike using the Crowdstrike REST APIs.
If you haven't already, please review our instructions for configuring the integration before proceeding with the instructions below.
|Excludes assets with a Discover Count that is less than the value set.|
See platform documentation for details on Crowdstrike Falcon – Creating Credentials
See platform documentation for details on Crowdstrike Falcon – Required Permissions
If you're having problems configuring an Integration, or if you've found something wrong in this document, please email us at [email protected] or suggest edits directly by selecting the
Suggest Edits link located in the upper right hand corner of the documentation.
Updated about 1 month ago