This article explains how to connect Guardicore to Workbench.

Step 1: Enable console access


Expel secures all login information our SOC analysts need about your devices in a MFA password product. Access to this login information is protected using our internal MFA processes. To learn more about the IP addresses all Expel traffic comes from, go here.

  1. Login to Guardicore Centra and navigate to Administration > User Management > Users and then click + Add User.

  2. Fill in the fields as follows:

    • For Username type Expel.

    • Leave the Email Address field blank.

    • The Description field is optional. You can leave it blank if you want.

    • For Permission Scheme select Administrator.

    • Create a Temporary Password.


      Do NOT select "Enable 2-Step Verification."

      Do NOT select "Enable user to view passwords used in security incidents."

  3. Login to Guardicore Centra using the user credentials you just created and set a new Password. Make a note of the new password for later use.

Step 2: Connect your technology with Workbench

  1. In a new browser tab, login to

  2. Fill in these fields:

    • For Name type Expel API Access.

    • For Location type the geographic location of the server (or "cloud" for cloud servers).

    • For Server type the server URL address.

    • For Username type the username you created in Step 1.

    • For Password type the new (not temporary) password you created in Step 1.


This article was accurate at the time of writing, but changes happen. If you find the instructions are outdated, leave a description in the comment field below and let us know!