BitSight Security Ratings
  • 2 Minutes To Read
  • Print
  • Share
  • Dark
    Light

BitSight Security Ratings

  • Print
  • Share
  • Dark
    Light

BitSight Security Ratings are a data-driven and dynamic measurement of an organization’s cybersecurity performance.

Types of Assets Fetched

This adapter fetches the following types of assets:

  • Devices

Parameters

  1. BitSight Domain (required, default: https://api.bitsighttech.com) - The hostname or IP address of the Bitsight server.
  2. API Key (required) - An API Key associated with a user account that has the Required Permissions to fetch assets.
  3. Verify SSL (required, default: False) - Verify the SSL certificate offered by the value supplied in BitSight Domain. For more details, see SSL Trust & CA Settings.
    • If enabled, the SSL certificate offered by the value supplied in BitSight Domain will be verified against the CA database inside of Axonius. If the SSL certificate can not be validated against the CA database inside of Axonius, the connection will fail with an error.
    • If disabled, the SSL certificate offered by the value supplied in BitSight Domain will not be verified against the CA database inside of Axonius.
  4. HTTPS Proxy (optional, default: empty) - A proxy to use when connecting to the value supplied in BitSight Domain.
    • If supplied, Axonius will utilize the proxy when connecting to the value supplied in BitSight Domain.
    • If not supplied, Axonius will connect directly to the value supplied in BitSight Domain.
  5. HTTPS Proxy User Name (optional, default: empty) - The user name to use when connecting to the value supplied in BitSight Domain via the value supplied in HTTPS Proxy.
    • If supplied, Axonius will authenticate with this value when connecting to the value supplied in HTTPS Proxy.
    • If not supplied, Axonius will not perform authentication when connecting to the value supplied in HTTPS Proxy.
  6. HTTPS Proxy Password (optional, default: empty) - The password to use when connecting to the value supplied in BitSight Domain via the value supplied in HTTPS Proxy.
    • If supplied, Axonius will authenticate with this value when connecting to the value supplied in HTTPS Proxy.
    • If not supplied, Axonius will not perform authentication when connecting to the value supplied in HTTPS Proxy.
  7. For details on the common adapter connection parameters and buttons, see Adding a New Adapter Connection.

image.png

Required Permissions

The value supplied in API Key must נק associated with a user account have read access to devices.

Creating a User in BitSight

  1. Log in to the BitSight admin panel as Administrator.

  2. Click Settings -> Manage Users.
    image.png

  3. Create a new user. Axonius requires the least-privileged type of user, which is the 'User' role.
    image.png

  4. Once added, you should receive an approval email from BitSight to the specified mail address. Click the attached link to set a new password. Then, Log in to the panel and click settings > account.

  5. Scroll down to 'API Token' and click 'Generate New Token'.
    image.png

  6. Use the generated token in the credentials screen.

Was This Article Helpful?