This is a simple script that shows how to take a CSV file that represents some activity and uses it to generate containers which will be called "incidents" and artifacts which will be called "events" in Phantom. A new token will be provided and the old token will no longer be accepted. You can click on the RE-GENERATE AUTH TOKEN button. If the token is compromised or needs to be re-provisioned at any point. This token is only valid from the associated IP address provided in the USER EDIT panel.Ĭontains the URL that can be used to POST to this phantom instance. "ph-auth-token": "cs76HmsNcWjkd6kWmGzUa18LcbtQx95vMW1bsdeP7gU=",Ĭontains the generated authorization token. Cut and paste this JSON formatted data and provide it to your script or application that will be sending the REST requests. You can view the token and other configuration information in the Authentication Configuration for REST API panel by clicking on the user name you just created. If you wish to have a more restricted set of permissions for a certain playbook or activity, create a role with the desired permissions and assign that instead. The default Automation role is provided for this purpose and has a broad set of permissions that allows most activities that a service account might need.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |