Enrich User Data with Have I Been Pwned
  • 23 May 2022
  • 2 Minutes to read
  • Dark
    Light
  • PDF

Enrich User Data with Have I Been Pwned

  • Dark
    Light
  • PDF

The Enrich User Data with Have I Been Pwned action enriches each of the query result users with breaches, pastes and pwned password identified by 'Have I Been Pwned' (HIBP) website.

NOTE
For details on the breaches, pastes and pwned password identified by 'Have I Been Pwned' (HIBP) API, see HIBP API.

To configure the Enrich User Data with Have I Been Pwned action, from the Action Library, click Enrich Device or User Data, and then click Enrich User Data with Have I Been Pwned.

Connection Settings

  1. Have I Been Pwned (HIBP) domain (optional, default: https://haveibeenpwned.com) - The hostname or IP address of the Have I Been Pwned (HIBP) server.
  2. API key (required) - The API Key that have been purchased from 'Have I Been Pwned'.
  3. Verify SSL (required, default: False) - Verify the SSL certificate offered by the value supplied in Have I Been Pwned (HIBP) domain. For more details, see SSL Trust & CA Settings.
    • If enabled, the SSL certificate offered by the value supplied in Have I Been Pwned (HIBP) domain will be verified against the CA database inside of Axonius. If the SSL certificate can not be validated against the CA database inside of Axonius, the connection will fail with an error.
    • If disabled, the SSL certificate offered by the value supplied in Have I Been Pwned (HIBP) domain will not be verified against the CA database inside of Axonius.
  4. HTTPS proxy (optional, default: empty) - A proxy to use when connecting to the value supplied in Have I Been Pwned (HIBP) domain.
    • If supplied, Axonius will utilize the proxy when connecting to the value supplied in Have I Been Pwned (HIBP) domain.
    • If not supplied, Axonius will connect directly to the value supplied in Have I Been Pwned (HIBP) domain.

Action Settings

  1. Alternative email suffix (optional, default: empty) - Specify a comma-separated list of additional email suffixes, that will be also be checked for breaches, pastes and pwned password identified by 'Have I Been Pwned' (HIBP). This field may be useful if users emails in the organization have several email suffixes.
  2. Domain include list (optional, default: empty) - Specify a comma-separated list of email domains.
    • If supplied, Axonius will request Have I Been Pwned to check only users from the given query their email is in the specified list.
    • If not supplied, Axonius will request Have I Been Pwned to check all users from the given query.

To learn more about configuring Enforcement Sets, see Configuring Enforcement Sets.


First name must have atleast 2 characters. Numbers and special characters are not allowed.
Last name must have atleast 1 characters. Numbers and special characters are not allowed.
Enter a valid email
Enter a valid password
Your profile has been successfully updated.