Application Integrations
      Back to home
      1. Help Center
      2. Application Integrations

      Carbon Black Integration

      AgileBlue can collect alert and event logs from VMware Carbon Black Cloud by leveraging the Carbon Black Cloud REST APIs.

      Supported Platform Version

      • Alerts API v6 and newer
      • Audit Log Events v3 and newer
      • Vulnerability Assessment v1 and newer

      Setup Process

      1. Log in to Carbon Black Cloud and navigate to Settings > API Access
      2. Select Add API Key
      3. Apply a unique name and description to the API Key
      4. Select the access level types based on the table below

        Data Stream

        Access Level and Permissions

        Audit

        API

        Alert

        Custom orgs.alerts (Read)

        Asset Vulnerability Summary

        Custom vulnerabilityAssessment.data (Read)
      5. Click Save to apply these updates
      6. Securely send the following values back to AgileBlue Support:
        1. Hostname
          1. This is your Carbon Black Cloud console Hostname – you can provide the full web address for your Carbon Black console dashboard.
        2. Organization Key
        3. Custom API ID
        4. Custom API Secret Key
        5. API ID
        6. API Secret Key

      Need Help?

      AgileBlue is always here to support you and ensure you are 100% successful. If there are any issues with the installation or if you have any questions, please reach out to AgileBlue Support.

      Email: support@agileblue.com 
      Phone: (216) 606-9400      🚨