Method: API Keys
Estimated Time to Complete: 15 minutes
Installer: Cortex Administrator
Installation Pre-Setup Requirements
Asset management requires at least one of the following licenses:
Cortex XDR Prevent
Cortex XDR Pro per Endpoint
Create API Key
In Cortex XDR, navigate to Settings > Configurations > Integrations > API Keys.
Select + New Key.
Choose Standard for the type of API Key
Do not set a time limit on the key
Select a role with sufficient access. The following levels of access are required.
READ on /endpoints/get_endpoints
READ on /endpoints/get_endpoint // NOTE: not plural
READ on /incidents/get_incidents
READ on /alerts/get_alerts
Generate and copy the API Key.
NOTE: You will not be able to view the API Key again after you complete this step. Ensure that you copy it before closing the notification.
Get your Cortex XDR API Key ID.
In the API Keys table, locate the ID field.
Note your corresponding ID number. This value represents the x-xdr-auth-id:{key_id} token.
Get your FQDN.
Right-click your API key and select View Examples.
Copy the CURL Example URL. The example contains your unique FQDN with the following format:
https://api-{fqdn}/public_api/v1/{name of api}/{name of call}/
Enter the key, key_id, and fqdn into the installation form below.
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article