Skip to end of metadata
Go to start of metadata

You are viewing an old version of this content. View the current version.

Compare with Current View Version History

Version 1 Next »

The following are prerequisites for the Infoblox SOC Insights integration:

Infoblox

  1. Infoblox BloxOne with one of the following

    1. BloxOne Threat Defense Business Cloud + BloxOne Threat Defense Ecosystem + SOC Insights

    2. BloxOne Threat Defense Advanced + BloxOne Threat Defense Ecosystem + SOC Insights

  2. An OPH (On-Prem Host) with the Data Connector service enabled. For deploying the Data Connector, refer to this guide.

  3. Generate the CSP API Token.

    1. Log in to your Infoblox BloxOne portal.

    2. Navigate to **API Keys** under your user profile.

    3. Create a new API key and copy the CSP token.

ServiceNow

  1. Permission to create scans, access scan results, and manage assets.

  1. Generate the following

    1. servicenowInstance: URL of the ServiceNow instance

    2. servicenowUsername: Username for authenticating against the ServiceNow instance

    3. servicenowPassword: Password for the ServiceNow user

    4. servicenowTableName (Only Incident and Security Incident are supported)

  • No labels