Login
    Contents x
    CylancePROTECT
    • 17 Jan 2024
    • 1 Minute to read
    • Print
    • Dark
      Light
    • PDF
    Contents

    CylancePROTECT

    • Updated on 17 Jan 2024
    • 1 Minute to read
    • Print
    • Dark
      Light
    • PDF
    Article Summary

    CylancePROTECT uses artificial intelligence to detect and protect against ransomware, advanced threats, fileless malware, and malicious documents.

    Related Enforcement Action:
    Cylance - Delete Devices

    Types of Assets Fetched

    This adapter fetches the following types of assets:

    • Devices
    • Users

    Parameters

    1. Cylance Domain (required) - Use either protectapi.cylance.com or protectapi.us.cylance.com. Note this value is different from the common domain, which is protect.cylance.com.
    2. Application ID , Application Secret and Tenant API Key (required) - The application ID, secret and associated API Key created in the 'Integrations' section of the Cylance console. See details below.
    3. HTTPS Proxy (optional, default: empty) - A proxy to use when connecting to the value supplied in Cylance Domain.
      • If supplied, Axonius will utilize the proxy when connecting to the value supplied in Cylance Domain.
      • If not supplied, Axonius will connect directly to the value supplied in Cylance Domain.
    4. Tenant Tag (optional, default: empty) - Automatically tag all devices discovered by the specific adapter server.
    5. Cylance Zones Include list (optional, default: empty) - Specify a comma-separated list of Cylance zones.
      • If supplied, the connection for this adapter will only fetch devices associated with at least one of the zones provided in this list.
      • If not supplied, the connection for this adapter will fetch all devices from Cylance.
    6. Cylance Zones Exclude list (optional, default: empty) - Specify a comma-separated list of Cylance zones.
      • If supplied, the connection for this adapter will not fetch devices associated with at least one of the zones provided in this list.
      • If not supplied, the connection for this adapter will fetch all devices from Cylance.

    To learn more about common adapter connection parameters and buttons, see Adding a New Adapter Connection.

    CylanceProtext.png


    Create Application ID and Application Secret in CylancePROTECT

    To create an Application ID and Application Secret:

    1. On the Integration tab, click “Add Application.”
    2. Specify a name (e.g., Axonius_adapter), and check all the boxes in the “Read” column. Then click “Save.”

    image.png

    1. A window will appear with the Application ID and the Application Secret.

    image.png

    1. Copy the values into the Axonius UI, and the adapter is configured.

    2. To get an API Key, from the Settings menu, select Integrations and copy the tenant ID.

      NOTE

      if you do not see an “Integrations” option in the Settings menu of your Cylance management console, please contact Cylance Support to have it enabled.

    image.png

    image.png

    Was this article helpful?
    What's Next
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout