- Visualize XM Cyber entities in the JupiterOne graph.
- Monitor changes to XM Cyber entities using JupiterOne alerts.
- JupiterOne periodically fetches entities from XM Cyber to update the graph.
- Write JupiterOne queries to review and monitor updates to the graph, or leverage existing queries.
- Configure alerts to take action when JupiterOne graph changes, or leverage existing alerts.
- XM Cyber supports authentication via an API Key
- You must have permission in JupiterOne to install new integrations.
If you need help with this integration, contact JupiterOne Support.
- Request an API Key with permissions to fetch entities
GET https://cyberrange.clients.xmcyber.com/api/systemReport/entities
- From the top navigation of the J1 Search homepage, select Integrations.
- Scroll down to XM Cyber and click it.
- Click Add Configuration and configure the following settings:
- Enter the account name by which you want to identify this XM Cyber account in
JupiterOne. Select Tag with Account Name to store this value in
tag.AccountNameof the ingested assets. - Enter a description to help your team identify the integration.
- Select a polling interval that is sufficient for your monitoring requirements.
You can leave this as
DISABLEDand manually execute the integration. - Enter the XM Cyber API key generated for use by JupiterOne.
- Click Create Configuration after you have entered all the values.
- From the top navigation of the J1 Search homepage, select Integrations.
- Scroll down to XM Cyber and click it.
- Identify and click the integration to delete.
- Click the trash can icon.
- Click Remove button to delete the integration.
The following entities are created:
| Resources | Entity _type |
Entity _class |
|---|---|---|
| Account | xmcyber_account |
Account |
| Entity | xmcyber_entity |
Record |
The following relationships are created:
Source Entity _type |
Relationship _class |
Target Entity _type |
|---|---|---|
xmcyber_account |
HAS | xmcyber_entity |