Versions Compared

Version Old Version 1 New Version Current
Changes made by

Shirly Tsang

Comala Publishing for Confluence Cloud

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

The following are prerequisites for the Infoblox SOC Insights integration:

Infoblox

  1. Infoblox BloxOne UDDI with one of the following

    1. BloxOne Infoblox Threat Defense Business Cloud + BloxOne Infoblox Threat Defense Ecosystem + SOC Insights

    2. BloxOne Infoblox Threat Defense Advanced + BloxOne Infoblox Threat Defense Ecosystem + SOC Insights

  2. An OPH (On-Prem Host) A NIOS-X virtual server with the Data Connector service enabled. For deploying the Data Connector, refer to this guide.

  3. Generate the CSP API Token.

    1. Log in to your Infoblox BloxOne portal.

    2. Navigate to **API Keys** under your user profile.

    3. Create a new API key and copy the CSP token.

ServiceNow

  1. Permission to create scans, access scan results, and manage assets.A valid Infoblox API key with SOC Insight access. For generating API Key, refer Configuring User API Keys.

ServiceNow

Generate the following

  1. servicenowInstance: URL of the ServiceNow instance

  2. servicenowUsername: Username for authenticating against the ServiceNow instance

  3. servicenowPassword: Password for the ServiceNow user

  4. servicenowTableName (Only Incident and Security Incident are supported)