This article covers the step-by-step procedure to send data such as users, groups, and roles from your Crowdstrike instance to the Human Managed platform via API.
Human Managed will establish a connection to pull Crowdstrike data from your instance. Crowdstrike's API can be accessed using API client authentication based on OAuth2 standard to:
- use access tokens to make API requests
- manage multiple API clients within your organization
- define limited scopes of permissions for API functionality
Prerequisites
To add a new API client, you’ll need administrative privileges for Crowdstrike.
Step 1: Create a service request for Human Managed to configure the API Receiver
- Submit a request
- In the Subject, type or select Connect Crowdstrike via API
- Once the ticket has been accepted by Human Managed and the ticket status has been updated, follow the next steps.
Step 2: Configure CrowdStrike Client API and Keys in Falcon Console
- Sign in to the Crowdstrike Falcon console
2. Go to menu Support and resources > API Clients and Keys
3. Click “Create API client”
4. Enter a descriptive Client name that identifies your API client in Falcon and in API action logs (e.g. “Human Managed”)
- Optionally, enter a description such as your API client’s intended use
5. Select the relevant API scope with “Read” Privilege.
6. Click “Create”. Record the API client secret somewhere safe. For security purposes, it's only shown when the API client is created or reset. If the secret is misplaced, it must be reset, which cuts off access for any integrations that still use the previous secret.
Step 3: Submit your credentials to Human Managed
- In the same service request ticket you opened in Step 1, update the ticket with the following details:
- client_id - one half of an API client's authentication credentials, similar to a username.client_secret - the other half of an API client's authentication credentials, similar to a password.
Comments
0 comments
Please sign in to leave a comment.