- 18 Dec 2022
- 2 Minutes to read
- Print
- DarkLight
- PDF
VMware Carbon Black Cloud Workload
- Updated on 18 Dec 2022
- 2 Minutes to read
- Print
- DarkLight
- PDF
VMware Carbon Black Cloud Workload offers cloud workload protection and attack surface reduction.
Types of Assets Fetched
This adapter fetches the following types of assets:
- Devices
Parameters
Host Name or IP Address (required) - The hostname or IP address of the VMware Carbon Black Cloud Workload server.
API Key and API ID (required) - Use the API Key and API ID you generated from the Connectors page of the VMware Carbon Black Cloud console.
For details on generating the API Key and API ID, see Carbon Black Cloud API Access Authentication.Organization Key (optional, default: empty) - Your organization key, which is located in the Carbon Black product console under Settings > API Access > API Keys.
- If specified, Axonius will use CB Defense REST API v6 to fetch data from the VMware Carbon Black Cloud adapter connection.
- If not specified, Axonius will use CB Defense REST API v3 to fetch data from the VMware Carbon Black Cloud adapter connection.
Verify SSL (required, default: false) - Select to verify the SSL certificate offered by the value supplied in VMware Carbon Black Cloud Domain. For more details, see SSL Trust & CA Settings.
HTTPS Proxy (optional, default: empty) - A proxy to use when connecting to the value supplied in VMware Carbon Black Cloud Domain.
- If supplied, Axonius will utilize the proxy when connecting to the value supplied in VMware Carbon Black Cloud Domain.
- If not supplied, Axonius will connect directly to the value supplied in VMware Carbon Black Cloud Domain.
HTTPS Proxy User Name (optional, default: empty) - The user name to use when connecting to the value supplied in Host Name or IP Address via the value supplied in HTTPS Proxy.
HTTPS Proxy Password (optional, default: empty) - The password to use when connecting to the server using the HTTPS Proxy.
To learn more about common adapter connection parameters and buttons, see Adding a New Adapter Connection.
APIs
Axonius uses the following CB Defense REST APIs:
- CB Defense REST API - intergrationServices (v3), if you have not specified an organization key.
- CB Defense REST API - appservices (v6), if you have specified an organization key.
It is highly recommended to use the CB Defense REST API - appservices (v6).
Required Permissions
If CB Defense REST API - appservices (v6) is utilized, the value supplied in API Key must be associated with credentials that have 'Device - General Information - Read' custom permissions.
In addition, to create:
- Change VMware Carbon Black Cloud Policy Enforcement Actions
- Isolate and Unisolate in VMware Carbon Black Cloud Enforcement Actions
you also need 'Device - Quarantine - Execute' permissions.
Refer to Carbon Black Cloud API Access for full details of the custom access level steps.