Kandji
Visualize Kandji devices and apps, and monitor changes through queries and alerts.
- Installation guide
- Kandji data model
Installation
JupiterOne requires an Access Token and Organization API URL for this integration. You need permission to create users in Kandji that will be used to obtain the Access Token and API URL.
Configuration in Kandji
- Log in to your Kandji subdomain, such as
https://{subdomain}.kandji.io/. - Go to Settings > Access > API Token. If you do not see this, contact the server admin.
- Click Add Token.
- Optionally, enter a token name and description.
- Copy the API Token. You will not see it again.
- Configure these API permissions:
- Device list
GET /devices - Device details
GET /devices/{device_id}/details - Application list
GET /devices/{device_id}/apps
- Device list
Upon completion of the configuration, you should to see the organization API URL under the API token section.
Use the organization API URL for API_URL and API token for ACCESS_TOKEN.
Configuration in JupiterOne
To install the Kandji integration in JupiterOne, navigate to the Integrations tab in JupiterOne and select Kandji. Click New Instance to begin configuring your integration, providing the following:
Account Name used to identify the Kandji account in JupiterOne. Ingested entities will have this value stored in
tag.AccountNamewhen theAccountNameoption is enabled.Description to assist in identifying the integration instance, if desired.
Polling Interval that you feel is sufficient for your monitoring needs. You may leave this as
DISABLEDand manually execute the integration.Kandji Access Token and Kandji API URL generated for use by JupiterOne. Ensure you enter Kandji API URL using the format
https://{yourApiUrl}/api/v1/, addinghttps://at the beginning and/api/v1/at the end of the API URL.
Click Create once all values are provided to finalize the integration.
Next steps
Now that your integration instance has been configured, it will begin running on the polling interval you provided, populating data within JupiterOne. Continue on to our Instance management guide to learn more about working with and editing integration instances.
Data Model
Entities
The following entities are created:
| Resources | Entity _type | Entity _class |
|---|---|---|
| Account | kandji_account | Account |
| App | kandji_app | Application |
| Device | kandji_device | Device |
| User | kandji_user | User |
Relationships
The following relationships are created:
Source Entity _type | Relationship _class | Target Entity _type |
|---|---|---|
kandji_account | HAS | kandji_device |
kandji_device | HAS | kandji_app |
kandji_device | HAS | kandji_user |