About

Huntress combines a powerful managed detection and response (MDR) platform with a team of human threat hunters—so you can protect your business from today’s determined cybercriminals.

Why You Should Integrate

This integration will provide visibility into your endpoint deployment coverage to ensure the appropriate controls are in place to secure your endpoints.

How Does the Integration Work

This integration pulls Huntress device objects from the organization ID provided in the source configuration.
This data is only used internally; we do not share it with any parties outside of Sevco. Refer to our privacy policy for details.

Configuration

1. Configure plugin: Configure the plugin with the required fields.

2. Configure Name: OPTIONAL: You can give the configuration a name to provide an identifiable attribute of the configuration to delineate other similar configurations.

3. Activate Config: To enable this configuration and begin pulling data select "Activate". If you wish to save the configuration to come back later to finish, select "Save Draft". This will save the configuration, but keep it disabled until Activated.

Source Documentation

Creating credentials

You'll be asked to provide source credentials that Sevco will use to connect to Huntress. The following documentation will step you through how to create a API public/private key pair, which will serve as your API key and API secret key.
https://api.huntress.io/docs#authentication

NOTE: Currently Huntress API access is restricted to opt-in users. You may need to contact Huntress support or your Huntress sales representative to get access. You will not have access to the API Key generation page otherwise.

Required Permissions

Sevco requires read only access to view Huntress endpoints.

API Documentation

https://api.huntress.io/docs

Contact Us

If you're having problems integrating a source, or if you've found something wrong in this document, please email us at [email protected].

Tags: cloud, epp-edr