- 26 Nov 2024
- 1 Minute to read
- Print
- DarkLight
- PDF
Sonatype
- Updated on 26 Nov 2024
- 1 Minute to read
- Print
- DarkLight
- PDF
Sonatype provides software supply chain management with a focus on speed and security in open source development.
Types of Assets Fetched
This adapter fetches the following types of assets:
- Users
- Vulnerabilities
- SaaS Applications
Parameters
Host Name or IP Address (required) - The hostname or IP address of the Sonatype server that Axonius can communicate with via the Required Ports.
User Name and Password (required) - The credentials for a user account that has permission to fetch assets.
Applications Token (optional) - Specify the applications token to fetch assets.
Verify SSL - Select whether to verify the SSL certificate of the server against the CA database inside of Axonius. For more details, see SSL Trust & CA Settings.
HTTPS Proxy (optional) - Connect the adapter to a proxy instead of directly connecting it to the domain.
HTTPS Proxy User Name (optional) - The user name to use when connecting to the value supplied in Host Name or IP Address via the value supplied in HTTPS Proxy.
HTTPS Proxy Password (optional) - The password to use when connecting to the server using the HTTPS Proxy.
To learn more about common adapter connection parameters and buttons, see Adding a New Adapter Connection.
APIs
Axonius uses the following APIs:
- /api/v2/users - Sonatype User REST API
- /api/v2/applications - Sonatype Application REST API
- /api/v2/reports/applications - Sonatype Report REST APIs - reportId
- Sonatype Report REST APIs - Downloading Component Information
Supported From Version
Supported from Axonius version 6.1