Description
If you're using SentinelOne Singularity Data Lake (formerly Skylight), you have the option to integrate that with ConcealBrowse. This allows metrics and data collected by Conceal to be seamlessly transferred into SentinelOne. This article will guide you through setting up the integration with ConcealBrowse.
Procedure
Prerequisite, your SentinelOne Package must include Extended Detection and Response (XDR)
SentinelOne Singularity Data Lake
Determine the XDR URL for your tenant based on region:
- USA - https://xdr.us1.sentinelone.net
- Canada - https://xdr.ca1.sentinelone.net
- EMEA - https://xdr.eu1.sentinelone.net
- India - https://xdr.ap1.sentinelone.net or https://xdr.aps1.sentinelone.net
- Australia - https://xdr.apse2.sentinelone.net
Set up your API Key based on your user interface preferences
Singularity Operations Center Interface Steps
- Click Policy & Settings
- Click API Keys in the Singularity Data Lake section
- Next to Log Access Keys, click +Add Key, choose Add Write Key
- Hover over the new key, and click the icon for Copy to clipboard
- Store the XDR URL and API Key for the next steps
Former Interface Steps
- In the SentinelOne management console, on the lefthand menu, click Visibility
- Click your username at the top right, and choose API Keys
- Next to Log Access Keys, click +Add Key, choose Add Write Key
- Hover over the new key, and click the icon for Copy to clipboard
- Store the XDR URL and API Key for the next steps
Conceal Dashboard
- Navigate to the Conceal dashboard at https://dashboard.conceal.io/ and login if necessary.
- Click on the section labeled Integrations on the left hand menu. Choose the MDR/XDR/EDR tab.
- Locate the SentinelOne Singularity tile and click the button labeled Configure.
- Provide your SentinelOne Management URL
- Example: https://xdr.us1.sentinelone.net (Do NOT include any paths, just the base URL, remove any trailing characters such as forward slashes) - Provide the API key you generated and saved from the SentinelOne Management console
- Click the Enabled checkbox and Save Settings
- Click Test Configuration to send a sample event from the Conceal dashboard.
*Never hesitate to contact your Customer Success Manager for any questions or concerns. You may also open a support ticket at support.conceal.io by scrolling to the bottom and clicking Submit a request.
0
0
Was this article helpful?
0 out of 0 found this helpful
Articles in this section
- Setting up Alerts through ConcealBrowse
- ConcealBrowse & Crowdstrike Solutions Brief
- Integrating SentinelOne Singularity Data Lake with ConcealBrowse
- Fortinet FortiGate integration with ConcealBrowse
- Integrating Wazuh with ConcealBrowse
- Integrating Syslog with ConcealBrowse
- Integrating Azure Sentinel with ConcealBrowse
- Integrating Devo with ConcealBrowse
- AlienVault integration with ConcealBrowse
- Enabling SIEM integrations through Webhooks