SentinelOne
Integrating SentinelOne with ThreatDefence
To integrate Sentinel One with ThreatDefence, follow these steps:
Step 1: Configuration in Sentinel One Management Console:
- Log in to the Sentinel One Management Console with administrative credentials.
- Go to Settings > Users in the Management Console.
- Click on the Admin user for whom you want to generate an API token.
- Note: Creating a new user is not required; a Viewer user role is sufficient to query the SentinelOne API.
- Click on the "Generate" link next to API Token.
- A new window will open displaying the API Token. Click on "Copy" to save it to your clipboard.
- You will also need the SentinelOne API URL for integration. This information is typically provided within the Sentinel One Management Console.
Step 2: Configuration in ThreatDefence
1. Provide ThreatDefence with Client Information:
-
Provide the following information to your ThreatDefence representative at support [at] threatdefence.com:
- SentinelOne API Key
- SentinelOne API URL
If you have any questions or need further assistance, please feel free to contact us at support [at] threatdefence.com