Integrate with 3rd party

bpolo
Tera Guru

‎04-16-2024 08:21 AM

We are currently wanting to integrate with a third party tool (DTonomy) but we only have the url, and an Authorization (API) key. How would we configure the REST API Call to set up authentication to connect to DTonomy?

Thanks in advance!

0 Helpfuls
  • 426 Views
6 REPLIES 6

bpolo
Tera Guru
In response to maroon_byte

‎04-24-2024 01:30 PM

Hi Sharad

Thanks very much for your response!

So depending on the filter that we set on the endpoint url for the GET HTTP Method, DTonomy returns multiple alerts.   My issue is that I am not sure how to script this so that for each alert that is retrieved, we can transform each one of the alerts into separate security incidents. Thanks again!

0 Helpfuls

maroon_byte
Mega Sage
In response to bpolo

‎04-24-2024 02:58 PM

If the response payload from DTonomy API is in JSON array format, then you will need a script to parse through the payload and process each JSON.  Search the SN community on how to import JSON response. I suggest to import data first into an import set table, use transform maps to either update an existing incident or create one.

 

Regards,

Sharad

0 Helpfuls