ESET Enterprise Inspector
App Vendor: ESET
App Category: Endpoint
Connector Version: 1.0.0
API Version: 1.0.0
About App
This app integrates with ESET enterprise inspector (EEI), a tool that allows continuous comprehensive monitoring of endpoint activity in real-time, in-depth analysis, and prompt response to breaches and incidents.
The ESET Enterprise Inspector app is configured with the Orchestrate to perform the following actions:
Action Name | Description |
|---|---|
Fetch Detections | This action fetches a list of detections. |
Get Detection Details | This action fetches the detection details. |
Integrate Device | This action reconnects the computer to the network. |
Isolate Device | This action isolates the computer from the network. |
Update Detection | This action updates a detection. |
Configuration Parameters
The following configuration parameters are required for the ESET Enterprise Inspector app to communicate with the ESET Enterprise Inspector Enterprise application. The parameters can be configured by creating instances in the app.
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Base URL | Enter the base URL. | Text | Required | |
Username | Enter the username. | Text | Required | |
Password | Enter the password. | Password | Required | |
Verify | Choose to verify the SSL certificate. | Boolean | Optional | Allowed values:
Default value: false |
Action: Fetch Detections
This action fetches a list of detections.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Top | Enter the number of items in the queried collection to be included in the result. | Integer | Optional | |
Skip | Enter the number of items in the queried collection to be skipped. | Integer | Optional | |
Count | Enter the count of the matching resources included with the resources in the response. | Integer | Optional | |
Order by | Enter the order to display the data. Example: "asc" "desc" | Text | Optional | Supported values:
Default value: asc |
Filters | Enter a filter query using the supported fields and operators to get specific results. Example: "resolved eq false" | Text | Optional | Supported fields:
Supported operators:
|
Action: Get Detection Details
This action retrieves the detection details.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Detection ID | Enter the detection ID. | Text | Required |
Action: Integrate Device
This action reconnects the computer to the network.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Computer ID | Enter the computer ID. | Text | Required |
Action: Isolate Device
This action isolates the computer from the network.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Computer ID | Enter the computer ID. | Text | Required |
Action: Update Detection
This action updates a detection.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Detection ID | Enter the detection ID. | Text | Required | |
Body | Enter the updated JSON request body. | Key-Value | Required |