VMware Carbon Black App Control (Carbon Black CB Protection)
  • 14 Jun 2022
  • 2 Minutes to read
  • Dark
    Light
  • PDF

VMware Carbon Black App Control (Carbon Black CB Protection)

  • Dark
    Light
  • PDF

VMware Carbon Black App Control (formerly Carbon Black CB Protection) protects critical systems and servers to prevent unwanted changes and ensure continuous compliance with regulatory mandates.

Types of Assets Fetched

This adapter fetches the following types of assets:

  • Devices

Parameters

  1. VMware Carbon Black App Control Domain – The hostname or IP address of the VMware Carbon Black App Control server.
  2. API Key - Specify an API Key for a user account that has the Required Permissions to fetch assets.
  3. Verify SSL (required, default: False) - Verify the SSL certificate offered by the value supplied in VMware Carbon Black App Control Domain. For more details, see SSL Trust & CA Settings.
    • When enabled, the SSL certificate offered by the value supplied in VMware Carbon Black App Control Domain is verified against the CA database inside of Axonius. If the SSL certificate can not be validated against the CA database inside of Axonius, the connection will fail with an error.
    • If disabled, the SSL certificate offered by the value supplied in VMware Carbon Black App Control Domain will not be verified against the CA database inside of Axonius.
  4. HTTPS Proxy (optional, default: empty) - A proxy to use when connecting to the value supplied in VMware Carbon Black App Control Domain.
    • If supplied, Axonius will utilize the proxy when connecting to the value supplied in VMware Carbon Black App Control Domain.
    • If not supplied, Axonius will connect directly to the value supplied in VMware Carbon Black App Control Domain.
  5. For details about the common adapter connection parameters and buttons, see Adding a New Adapter Connection.

image.png

Advanced Settings

Note:

From version 4.6 Advanced settings can either apply for all connections for this adapter, or you can set different advanced settings and/or different scheduling for a specific connection, refer to ​Advanced Configuration for Adapters

  1. Fetch uninstalled devices (required, default: True) - Choose whether to fetch uninstalled devices.
    • If enabled, all connections for this adapter will fetch uninstalled devices.
    • If disabled, all connections for this adapter will not fetch uninstalled devices.
  2. Fetch devices per page (required, default: 10) - Set the number of results per page received for a given request, to gain better control of the performance of all connections of this adapter.
  3. Do not fetch instances that have been marked as deleted (required, default: False) - Choose whether to exclude instances marked 'deleted' by Carbon Black App Control.
    • If enabled, all connections for this adapter will not fetch instances marked 'deleted' by Carbon Black App Control.
    • If disabled, all connections for this adapter will fetch all instances.
Note:

To learn more about Adapter Configuration tab advanced settings, see Adapter Advanced Settings.

Required Permissions

The value supplied in API Key for a user account that has the Required Permissions to fetch assets.


To create an API key, do as follows:

  1. As an admin, connect to the VMware Carbon Black App Control admin panel. Navigate to Login Accounts.
    image.png

  2. Click Add User and fill in the details. In User Roles, select the default group ReadOnly.
    Make sure you select Show API token and generate one. This is the API token we need for the adapter.
    image.png

    image.png

    image.png

  3. Click Create & Exit.



First name must have atleast 2 characters. Numbers and special characters are not allowed.
Last name must have atleast 1 characters. Numbers and special characters are not allowed.
Enter a valid email
Enter a valid password
Your profile has been successfully updated.