Welcome “Examine API” into the Cisco Cloud Safety API expertise
Builders and engineers can now leverage the brand new Umbrella API authentication to create API keys. This consists of entry to Examine API alongside different Umbrella APIs, using a contemporary OAuth2 mechanism. Beforehand, the method for authenticating the Examine API concerned producing a selected Examine API token (primary authentication) through the Examine part within the consumer interface.
Cisco prospects and companions also can extensively make the most of the Examine API to reinforce the information of their Safety Info and Occasion Administration (SIEM) techniques, menace intelligence platforms, or incident administration workflows. This permits them to promptly determine vital safety occasions and supply extra data for safety analysts and incident responders. The Examine API can also be a basic part in main integrations, similar to Cisco XDR.
Within the screenshot beneath you may see how one can now set the outline for the associated API Key within the Umbrella dashboard.
If we take note of instances the place purchasers combine Umbrella with a whole lot of 3d occasion platforms, descriptions can present readability as to using associated API credentials. For instance, you may add an outline like “Examine API Key with Learn/Write admin scope for Splunk.”
Limit API entry from particular IPs
Limiting API entry for a given API Key to a selected IP deal with or vary of addresses is now doable. This important safety enhancement ensures that buyer API requests originate solely from safe and licensed places. DevSecOps groups and directors can now implement that these requests are made solely from designated IP addresses or ranges and work with each IPv4 and IPv6 sources.
A number of extra API updates
Attempt these updates within the DevNet Sandbox
Give it a attempt! Play with these updates utilizing the Umbrella DevNet Sandbox.
Share:
