Axonius Documentation
  1. Connecting Adapters
  2. Adapters S

Silverfort

Silverfort is a unified identity protection platform that integrates with IAM solutions to provide secure access to company resources.

Asset Types Fetched

  • Users

Before You Begin

APIs

Axonius uses the Silverfort REST API.

Required Permissions

  • Read permissions

Supported From Version

Supported from Axonius version 6.1

Obtaining API Keys

Silverfort's API uses category-specific API keys to control access to different API endpoints. To connect the adapter in Axonius, 5 of these API keys are required. To obtain them:

  1. Log in to your Silverfort Admin Console.

  2. Navigate to Settings > API Access (or an equivalent section for API key management).

  3. Generate separate API keys for the following categories:

    • Service Accounts (Endpoint: GET /getServiceAccountsInsights)
    • Operations (Endpoint: GET /getBootStatus)
    • Risk (Endpoint: GET /getEntityRisk)
    • Policies (Endpoint: GET /v2/public/policies)
    • Enrollment (Endpoint: GET /getUsersEnrollment)
    selecting API key categories
📘

Note

The exact steps to generate API keys should be confirmed with your Silverfort administrator or Silverfort support, as the API documentation may vary based on your Silverfort version.

Connecting the Adapter in Axonius

Required Parameters

  1. Host Name or IP Address - The hostname or IP address of the Silverfort server.

  2. App User ID and App User Secret - The credentials for a user account that has the Required Permissions to fetch assets. Refer to your API documentation for guidance on how to obtain these.

  3. Risk API Key (External Access), Policy API Key (External Access), Enrollment API Key (External Access), Service Account API Key (External Access), Operations API Key (External Access) - The API Keys you generated in your Silverfort console. Note that all of them are required.

add connection screen

Optional Parameters

  1. Verify SSL - Select whether to verify the SSL certificate of the server against the CA database inside of Axonius. For more details, see SSL Trust & CA Settings.
  2. HTTPS Proxy (optional) - Connect the adapter to a proxy instead of directly connecting it to the domain.
  3. HTTPS Proxy User Name (optional) - The user name to use when connecting to the value supplied in Host Name or IP Address via the value supplied in HTTPS Proxy.
  4. HTTPS Proxy Password (optional) - The password to use when connecting to the server using the HTTPS Proxy.

To learn more about common adapter connection parameters and buttons, see Adding a New Adapter Connection.

Advanced Settings

📘

Note

Advanced settings can either apply to all connections for this adapter, or to a specific connection. Refer to Advanced Configuration for Adapters.

  1. Enrich Users with Service Accounts - Toggle on to enrich users with service accounts.
  2. Enrich Users with Policies - Toggle on to enrich users with MFA policies.
📘

Note

To learn more about Adapter Configuration tab advanced settings, see Adapter Advanced Settings.

Updated 17 days ago