Cisco Stealthwatch
  • 1 Minute To Read
  • Print
  • Share
  • Dark
    Light

Cisco Stealthwatch

  • Print
  • Share
  • Dark
    Light

Cisco Stealthwatch is an agentless malware detection solution that provides visibility and network traffic security analytics across the extended network, including endpoints, branch, data center, and cloud.

Types of Assets Fetched

This adapter fetches the following types of assets:

  • Devices

Parameters

  1. Cisco SMC Hostname (required) - The hostname or IP address of the Cisco SMC server.
  2. Tenant identifier (required) - Specify the Tenant ID. Tenant ID is the suffix of domain_[TENANT_ID] that can be found by executing the following command on the Cisco SMC server:
    ls -lsa /lancope/var/smc/config/
    
  3. User Name and Password (required) - The credentials for a user account that has the Required Permissions to fetch assets.
  4. Verify SSL (required, default: False) - Verify the SSL certificate offered by the value supplied in Cisco SMC Hostname. For more details, see SSL Trust & CA Settings.
    • If enabled, the SSL certificate offered by the value supplied in Cisco SMC Hostname will be verified against the CA database inside of Axonius. If the SSL certificate can not be validated against the CA database inside of Axonius, the connection will fail with an error.
    • If disabled, the SSL certificate offered by the value supplied in Cisco SMC Hostname will not be verified against the CA database inside of Axonius.
  5. HTTPS Proxy (optional, default: empty) - A proxy to use when connecting to the value supplied in Cisco SMC Hostname.
    • If supplied, Axonius will utilize the proxy when connecting to the value supplied in Cisco SMC Hostname.
    • If not supplied, Axonius will connect directly to the value supplied in Cisco SMC Hostname.
  6. For details on the common adapter connection parameters and buttons, see Adding a New Adapter Connection.



image.png

APIs

Axonius uses Stealthwatch Enterprise REST API Documentation.

Required Ports

HTTPS communication is required between Axonius and the Cisco SMC server.

Required Permissions

The value supplied in User Name must be a read-only user. The user should have access to Cisco Stealthwatch SMC (Management Center) with permissions to view exporters.

Version Matrix

This adapter has only been tested with the versions marked as supported, but may work with other versions. Please contact Axonius Support if you have a version that is not listed and it is not functioning as expected.

Version Supported Notes
Cisco Stealthwatch 6.10 and higher Yes
Cisco Stealthwatch 6.9 and lower No
Was This Article Helpful?