Document toolboxDocument toolbox

Axonius

Axonius is a cybersecurity asset management solutions that offers a comprehensive IT asset inventory and network security policy enforcement.

Connect Axonius with Devo SOAR

  1. Navigate to Automations > Integrations.

  2. Search for Axonius.

  3. Click Details, then the + icon. Enter the required information in the following fields.

  4. Label: Enter a connection name.

  5. Reference Values: Define variables here to templatize integration connections and actions. For example, you can use https://www.{{hostname}}.com where, hostname is a variable defined in this input. For more information on how to add data, see 'Add Data' Input Type for Integrations.

  6. Verify SSL: Select option to verify connecting server's SSL certificate (Default is Verify SSL Certificate).

  7. Remote Agent: Run this integration using the Devo SOAR Remote Agent.

  8. Server URL: To access Axonius API, provide valid URL.

  9. Access Key: To access Axonius API, provide valid Access Key.

  10. Secret Key: To access Axonius API, provide valid Secret Key.

  11. After you've entered all the details, click Connect.

Actions for Axonius

Get Assets

Get a list of assets by different fields.

Input Field

Choose a connection that you have previously created and then fill in the necessary information in the following input fields to complete the connection.

Input Name

Description

Required

Input Name

Description

Required

Field Type

Select the type of field by which assets would be fetched.

Required

Field Value

Jinja-templated text containing the value of field by which assets would be fetched. Field Values are the values of the field-type selected as above. Example: If 'Field-Type' selected above is 'Hostname', then 'Field-Value' would be 'MY-PC001' i.e. the value of 'Field-Type'.

Required

Fields

Jinja-templated text containing the property of the asset which is to be fetched. Example: ["field1", "field2"]

Optional

Time between consecutive API requests (in millis)

Time to wait between consecutive API requests in milliseconds (Default is 0 millisecond).

Optional

Output

A JSON object containing multiple rows of result:

  • has_error: True/False

  • error: message/null

  • result: Get Assets Data

{json}{ "has_error": false, "error": null, "result": { "assets": [ ... list of assets ] } }

Release Notes

  • v2.0.0 - Updated architecture to support IO via filesystem

  • v1.1.0 - Added new optional parameter Fields in the existing action Get Assets