Skip to main content

Integrating Cisco Umbrella

Capabilities

DataGrail's Cisco Umbrella integration provides the following capabilities:

ProductCapability
Live Data MapSystem Detection

Before You Start

To successfully configure this integration, please ensure you have sufficient privileges:

  • DataGrail User Role: Super Admin, Connections Manager
  • Cisco Umbrella User Role: Full Admin

Create an Umbrella API Key

  1. Sign in to Cisco Secure Access: https://login.sse.cisco.com/
  2. Navigate to Admin > API Keys.
  3. Select API Keys, then click Add.
  4. Configure the key:
Key configuration
  • Enter a Name (and optional description) for the key.
  • Under Key Scope, expand Reports and enable App Discovery Read.
  • Choose Read Only access for the selected scope/resource.
  • Choose an Expiry Date (or Never expire if allowed by your security policy).
  1. Click Create Key.
  2. Copy and securely store the credentials (you can only view the secret once):
API Key and Key Secret
  • API Key
  • Key Secret
  1. Click Accept And Close.

Identify your Cisco Data Center (Region)

  1. In Cisco Secure Access, navigate to Admin > Log Management.
  2. Identify where your Secure Access logs are stored (data storage region).
  3. In DataGrail, select the matching Cisco Data Center value:
Cisco Data Centers
  • North America - us
  • Europe - eu

Connect to DataGrail

  1. In DataGrail, navigate to Integrations and select Configure New Integration to search for Cisco Umbrella.
  2. Enter the API Key, Key Secret, and select your Cisco Data Center.
  3. Select Configure Integration.

Next Steps

Now that you've successfully connected the integration, check out the following resources:

Troubleshooting

If you are unable to successfully connect the integration, review these common troubleshooting steps:

Ensure Required Permissions Are Granted on API Keys/Resources

DataGrail checks required permissions and scopes on API keys/resources used by each integration. If all necessary permissions are not granted, new connections will fail.

Review Required Account Types and User Roles

If users do not have the necessary permissions or the minimum required user role in the connecting system, the connection to DataGrail will fail. Additionally, connections will fail if your account type does not match the one required by the integration.

See Before You Start to review these requirements.

Technical Details

The Cisco Umbrella integration uses the Umbrella Token Authorization API + Secure Access Reports API (v2).

API Documentation

Learn more about this API implementation and DataGrail functionality in our API Integration Documentation.

 

Need help?
If you have any questions, please reach out to your dedicated Account Manager or contact us at support@datagrail.io.

Disclaimer: The information contained in this message does not constitute as legal advice. We would advise seeking professional counsel before acting on or interpreting any material.