Welcome “Examine API” into the Cisco Cloud Safety API expertise
Builders and engineers can now leverage the brand new Umbrella API authentication to create API keys. This consists of entry to Examine API alongside different Umbrella APIs, using a contemporary OAuth2 mechanism. Beforehand, the method for authenticating the Examine API concerned producing a selected Examine API token (fundamental authentication) by way of the Examine part within the person interface.
Cisco prospects and companions can even extensively make the most of the Examine API to reinforce the information of their Safety Info and Occasion Administration (SIEM) methods, menace intelligence platforms, or incident administration workflows. This permits them to promptly establish vital safety occasions and supply extra data for safety analysts and incident responders. The Examine API can be a basic element in main integrations, resembling Cisco XDR.
Within the screenshot under you possibly can see how one can now set the outline for the associated API Key within the Umbrella dashboard.
If we take into consideration circumstances the place shoppers combine Umbrella with a whole lot of 3d social gathering platforms, descriptions can present readability as to using associated API credentials. For instance, you possibly can add an outline like “Examine API Key with Learn/Write admin scope for Splunk.”
Limit API entry from particular IPs
Limiting API entry for a given API Key to a selected IP handle or vary of addresses is now potential. This important safety enhancement ensures that buyer API requests originate solely from safe and approved areas. DevSecOps groups and directors can now implement that these requests are made completely from designated IP addresses or ranges and work with each IPv4 and IPv6 sources.
A couple of extra API updates
Attempt these updates within the DevNet Sandbox
Give it a attempt! Play with these updates utilizing the Umbrella DevNet Sandbox.
Share:
Supply hyperlink
