Secureworks Taegis XDR
Overview
Secureworks Taegis XDR (Extended Detection and Response) is a cloud-native solution that integrates advnced threat detection, analytics, and response capabilities across different environments. It provides comprehensive visibility and automated monitoring, allowing organizations to identify and respond to threats in their device environment.
Available Integrations
Note: Red Cloak TDR is a legacy version of Taegis XDR. You can connect both integrations to your Sevco environment using the same authentication method.
| Product(s) | Supported Asset Type(s) | Integration Type |
|---|---|---|
| Taegis XDR | Devices | Source |
| Red Cloak TDR | Devices | Source |
Why You Should Integrate
Integrating Secureworks Taegis XDR will provide visibility into devices with the sensor installed to identify your endpoint coverage and state.
How the Integration Works
This integration pulls device assets from Secureworks Taegis XDR using GraphQL API.
This data is only used internally; we do not share it with any parties outside of Sevco. Refer to our privacy policy for details.
Configuration
- Configure the Access Schema
| Field | Description | Example |
|---|---|---|
Region Name* | The region your Secureworks Taegis XDR environment is deployed in | US1 |
Skip TLS Certification Validation | Skip certificates validation when using a certificate that is self-signed or unable to be validated through a proper certificate authority. | n/a |
The Client ID* | The Client ID used to identify the authorization and permissions | aBcDeFgHiJkLmNoPqRsTuVwXyZ0123456789 |
The Client Secret* | The Client secret used to authenticate with the source | *********************** |
-
Add an Integration: Select the integration(s) you'd like to add.
- Collect devices from Secureworks Taegis XDR
- Collect devices from Secureworks Red Cloak TDR
- Configure General Information: OPTIONAL: You can use the following fields to provide additional information about your configuration.
| Field | Description | Example |
|---|---|---|
Name (optional) | Uniquely identifiable attribute of the configuration to delineate other similar configurations with the existing organization. | DMZ network |
Contact Person (optional) | A placeholder to input a name or email address of a contact associated with the integration. | Jane Doe |
Link to Console (optional) | A placeholder to input a link to the console of the product Sevco is integrating with for quick reference and access when configuring or editing the integration. | www.product.com/devices |
- Activate Config: Select "Activate" to enable this configuration and begin pulling data.
External Documentation
Creating Credentials
You'll be asked to provide integration credentials that Sevco will use to connect to Secureworks Taegis XDR. Please follow How to create your credentials to create the necessary credentials for this integration.
Required Permissions
The following default permissions are required:
- Tenant Analyst
See How to create your credentials for additional details.
API Documentation
Secureworks Taegis XDR API Documentation
Contact Us
If you're having problems configuring an integration, or if you've found something wrong in this document, please email us at [email protected] or suggest edits directly by selecting the Suggest Edits link located in the upper right hand corner of the documentation.
Updated 4 months ago