Visualize SentinelOne endpoint agents and devices, map SentinelOne agents to devices and owners, and monitor changes through queries and alerts.
- Installation guide
- SentinelOne data model
For this integration, you will first need to acquire an API Token in SentinelOne:
In your SentinelOne Management Console, click Settings > USERS
Select your username and navigate to Edit User > API Token > Generate
Generate a token for use within JupiterOne.note
If you see Revoke and Regenerate actions, you already have an existing token. Revoking or regenerating the existing token will break any scripts currently utilizing the revoked/regenerated token:
- Revoke removes the token authorization, and there is no confirmation on this action.
- Regenerate revokes the token and generates a new token. If you click Generate or Regenerate, a message shows the token string and the date that the token expires.
Click DOWNLOAD for use in JupiterOne.
Finalize in JupiterOne
To install the SentinelOne integration in JupiterOne, navigate to the Integrations tab in JupiterOne and select SentinelOne. Click New Instance to begin configuring your integration.
Creating a configuration requires the following:
The Account Name used to identify the SentinelOne account in JupiterOne. Ingested entities will have this value stored in
AccountNametoggle is enabled.
Description to assist in identifying the integration instance, if desired.
Polling Interval that you feel is sufficient for your monitoring needs. You may leave this as
DISABLEDand manually execute the integration.
Your SentinelOne Management Server Hostname/URL and API Token.
Click Create once all values are provided to finalize the integration.
Now that your integration instance has been configured, it will begin running on the polling interval you provided, populating data within JupiterOne. Continue on to our Instance management guide to learn more about working with and editing integration instances.
The following entities are created:
|Resources||Entity ||Entity |
The following relationships are created:
|Source Entity ||Relationship ||Target Entity |