Tanium Asset
About
Tanium provides organizations with an endpoint control plane that is fast and flexible enough to adapt to the demands of modern enterprises.
Why You Should Integrate
Integrating with Tanium Asset will provide visibility and device presence awareness for an environment to identify Tanium coverage.
How Does the Integration Work
This integration pulls device objects and associated information from Tanium using the Tanium REST APIs. This data is only used internally; we do not share it with any parties outside of Sevco. Refer to our privacy policy for details.
Prerequisite
- Tanium API Gateway. In order to utilize APIs, Tanium requires the installation of an API Gateway. Please contact Tanium support for details.
Configuration
-
Install a runner: Follow our instructions to install a runner.
-
Choose a runner: Select the runner you would like to use for retrieving data from the source.
Requirements:- TCP/IP 443 from the runner to the Tanium API Gateway
- Runner IP addressed enabled for the Tanium API Token.
-
Configure plugin: Configure the plugin with the required fields.
URLs for cloud-hosted instances of Tanium should have the following format:
https://<company-name>-api.cloud.tanium.com
Field | Description | Example |
---|---|---|
url | Tanium server URL | https://customername-api.cloud.tanium.com |
insecure | Skip certificates validation when using a certificate that is self-signed or unable to be validated through a proper certificate authority. | n/a |
api_token | API token string | *********************** |
-
Configure Name: OPTIONAL: You can give the configuration a name to provide an identifiable attribute of the configuration to delineate other similar configurations.
-
Activate Config: To enable this configuration and begin pulling data select "Activate". If you wish to save the configuration to come back later to finish, select "Save Draft". This will save the configuration, but keep it disabled until Activated.
Source Documentation
Creating Credentials
To create an API token for Sevco to use, follow the instructions in Create an API token
Ensure the IP address of the system the runner is installed on needs to be enabled for the API token. To enable the IP address, follow the instructions Enable systems to use API tokens
API Token Recommendations
By default, the API token is set to expire in 7 days. It is recommended that you extend this expiration period to 365 days or a period that complies with your internal password rotation policies. The following instructions will explain how to change the expiration period, Configure token expiration settings.
Required Permissions
The following permissions are required to configure this integration:
Asset Report Read
Updated 3 months ago