Cybereason REST APIs use an auth token to make authorized calls to the API. Expel uses Cybereason REST APIs to access resources through URI paths. You need to generate an API key and an Application key.
In this article
Step 1: Generate user credentials
-
In the Cybereason UI, navigate to the User screen.
-
Click Create New User. The Create New User screen appears.
-
Type the required details.
-
Username: an email address. Make note of this for later use.
-
Password: a password. Make note of this for later use.
-
Change password on next login: don't select this.
-
Enable Two Factor Authentication (TFA): don't select this.
-
Custom roles: select Analyst and L3.
-
Predefined roles: select API User.
-
Step 2: Configure the technology in Workbench
-
In a new browser tab, log into https://workbench.expel.io.
-
On the console page, navigate to Settings and click Security Devices.
-
At the top of the page, click Add Security Device.
-
Search for and select your technology Cybereason.
-
Complete all fields using the credentials and information you collected in Step 1.
-
You can provide console access now or set it up later. Use the instructions below to set it up later.
Cyber reason, cyberreason,