SentinelOne
  • 21 Nov 2022
  • 1 Minute to read
  • Dark
    Light
  • PDF

SentinelOne

  • Dark
    Light
  • PDF

SentinelOne is an endpoint protection solution including prevention, detection, and response.

Types of Assets Fetched

This adapter fetches the following types of assets:

  • Devices

Parameters

  1. SentinelOne Domain (required) - The hostname or IP Address of the SentinelOne management server. This field format is '[instance].sentinelone.net'.

  2. User Name and Password (optional) - The user name and password for an account that has site viewer access to the management server.

    Note:
    • The User Name and Password parameters take precendence over the API Token parameter.
    • If API Token is not supplied, User Name and Password fields are required.
  3. API token (optional) - The API token is created within the My User Profile of the account with viewer access to the management server.

    Note:
    • When Two Factor Authentication is used, you must use API Token and leave the User Name and Password fields empty.
    • If User Name and Password are not supplied, API Token field is required.
  4. Verify SSL - Select to verify the SSL certificate offered by the value supplied in SentinelOne Domain. For more details, see SSL Trust & CA Settings.

  5. HTTPS Proxy (optional) - A proxy to use when connecting to the value supplied in SentinelOne Domain.

  6. Enable Client Side Certificate - Select to enable Axonius to send requests using the certificates uploaded to allow Mutual TLS configuration for this adapter. When you select this option, 2 more fields are displayed.

    TLSonAdapter.png

    • Click Choose file next to Client Private Key File to upload a client private key file in PEM format
    • Click Choose file next to Client Certificate File to upload a public key file in PEM format
  7. For details about the common adapter connection parameters and buttons, see Adding a New Adapter Connection.

SentinelOne.png


Advanced Settings

Note:

From Version 4.6, Advanced settings can either apply for all connections for this adapter, or you can set different advanced settings and/or different scheduling for a specific connection, refer to ​Advanced Configuration for Adapters.

  1. Fetch application CVEs (optional) - Select whether to fetch CVE security vulnerability information for software.
  2. Fetch decommissioned devices (optional) - Select whether to fetch devices that are decommissioned.


Note:

To learn more about Adapter Configuration tab advanced settings, see Adapter Advanced Settings.



Changing your password will log you out immediately. Use the new password to log back in.
First name must have atleast 2 characters. Numbers and special characters are not allowed.
Last name must have atleast 1 characters. Numbers and special characters are not allowed.
Enter a valid email
Enter a valid password
Your profile has been successfully updated.