Red Canary

The Red Canary suite includes products that record telemetry, detect and investigate threats, and automate remediation.

Types of Assets Fetched

This adapter fetches the following types of assets:

• Devices

Parameters

1. Red Canary Domain (required) - The hostname or IP address of the Red Canary server.
2. API Key (required) - An API Key associated with a user account that has permissions to fetch assets.
3. Verify SSL (required, default: False) - Verify the SSL certificate offered by the value supplied in Red Canary Domain. For more details, see SSL Trust & CA Settings.
   • If enabled, the SSL certificate offered by the value supplied in Red Canary Domain will be verified against the CA database inside of Axonius. If the SSL certificate can not be validated against the CA database inside of Axonius, the connection will fail with an error.
   • If disabled, the SSL certificate offered by the value supplied in Red Canary Domain will not be verified against the CA database inside of Axonius.
4. HTTPS Proxy (optional, default: empty) - A proxy to use when connecting to the value supplied in Red Canary Domain.
   • If supplied, Axonius will utilize the proxy when connecting to the value supplied in Red Canary Domain.
   • If not supplied, Axonius will connect directly to the value supplied in Red Canary Domain.
5. For details on the common adapter connection parameters and buttons, see Adding a New Adapter Connection.

Advanced Settings

1. Fetch decommissioned devices (required, defalut: True) - Select whether to fetch decommissioned devices.
   • If enabled, all connections for this adapter will also fetch decommissioned devices.
   • If disabled, all connections for this adapter will not fetch decommissioned devices.