Axonius Documentation
Start typing to search…

OneTrust

OneTrust is a privacy, security, and data governance platform that helps organizations manage compliance, risk, and data privacy.

The OneTrust adapter provides Axonius with visibility into your publicly accessible assets, including device, user, and group data

Asset Types Fetched

  • Devices
  • Users
  • Groups

Before You Begin

Required Ports

  • TCP port 80/443

Authentication Methods

  • Client ID / Client Secret

Required Permissions

The adapter connection requires a user account with the following permissions and access scopes configured within the OneTrust portal:

  • INVENTORY_READ scope - This scope must be passed in the token request to allow the adapter to retrieve asset and inventory data.
  • View Users and Groups - The credentials must be associated with a role (Viewer or higher) that has access to the User Management module to fetch identities and organizational structures.
  • API access - The account must have permissions to generate and use OAuth 2.0 Client Credentials (Client ID and Client Secret) for external system integrations.

APIs

Axonius uses the OneTrust API to retrieve asset data.

Supported from Version

This adapter is supported from Axonius version 6.1.64.

Connection Parameters

To connect the adapter in Axonius, provide the following parameters.

Required Parameters

  1. Host Name or IP Address - The hostname or IP address of the OneTrust server.
  2. Client ID and Client Secret - The credentials of a user account that has the required permissions to fetch assets. For information on how to generate client credentials, see Generate Access Token.
onetrust

Optional Parameters

  1. Verify SSL - Select whether to verify the SSL certificate of the server against the CA database inside of Axonius. For more details, see SSL Trust & CA Settings.

  2. HTTPS Proxy - Enter an HTTPS proxy address to connect the adapter to a proxy instead of directly connecting it to the domain.

  3. HTTPS Proxy User Name - Enter the user name to use when connecting to the value supplied in Host Name or IP Address via the value supplied in HTTPS Proxy.

  4. HTTPS Proxy Password - Enter the password to use when connecting to the server using the HTTPS Proxy.

  5. API Gateway Connection - Enable this option to use API gateway parameters for authentication. After enabling this option, under API Gateway Type, choose Layer7 and fill in the displayed parameters (in addition to Host Name or IP Address). Read about Layer7 API Gateway Parameters.

    📘

    Note

    When you use an API gateway connection, the other authentication parameters are not required. However, to add the connection successfully, you need to enter placeholder values in these fields.

To learn about additional optional/common adapter connection parameters, see Adding a New Adapter Connection.

Updated about 8 hours ago