What integrations would you like us to add:
Integration Poll
We are transitioning from Early Access to General Availability at the end of November and will support the following 3rd party integrations by category.
NOTE: The Microsoft integrations are included with the MDR License at no additional charge. The table below includes the category these fall into. If only using the Microsoft integration you do not require the additional category license. A category license gives you access to all integrations in the category.
Endpoint |
Firewall |
Email |
Trend Micro - Apex Central |
Fortinet - FortiAnalyzer |
Mimecast - Email Security Cloud Gateway |
SentinelOne - Singularity endpoint |
Fortinet - FortiGate |
Proofpoint - Targeted Attack Protection |
Microsoft Defender for Endpoint |
Cisco - Firepower |
Microsoft Office 365 Security and Compliance |
|
Cisco - Meraki |
Microsoft Defender for O365 |
|
Palo Alto Networks - PAN-OS |
|
|
Sonicwall - SonicOS |
|
|
Check Point - Quantum Firewall |
|
Network/Network Security/NDR) |
Identity |
Public Cloud security / CSPM |
Darktrace |
ManageEngine - ADAudit Plus |
AWS Security Hub |
Skyhigh Security - Secure Web Gateway |
Cisco - Duo |
AWS Cloud Trail |
Thinkst Canary |
Okta |
Orca Security |
|
Microsoft Azure AD Identity Protection |
Microsoft Defender for Cloud |
|
Microsoft Defender for Identity |
Microsoft Defender for Cloud Apps (CASB) |
At GA if you are in the Early Access Program than all integrations will continue to work through the end of the Early Access Program in mid December.
In mid December all MDR customers will have access to the integrations available with the MDR Complete License (Endpoint, Microsoft 365, Microsoft Security Graph) as well as the Sophos products you are licensed for.
Integrations in the Email, Firewall, Identity, Network and Public Cloud security categories will require a license for the Integration pack for the category they are in.
We will continue to add more integrations at a rapid pace and are looking for your input on integrations you would like us to add. To facilitate understanding what you want we have a poll you can take to identify new integrations that are desired.
As new integrations become available they will be visible to all MDR customers as BETA integrations. Beta integrations are under development and we encourage accounts to enable them so that we can receive telemetry from the 3rd party to confirm the information is sufficient for case generation and triage by the MDR operations team. Once a BETA integration has been completed it will become available in the category it has been assigned.
Please take the poll and identify any integrations you would need in your environment.
Below is the list of those we have already heard requests for and if a security product is not on the list that you would desire please add it in the comments section so we are aware of the need.
Thanks
Karl