Where to find api credentials

You assign a role to a set of API credentials when you create them. This controls what users using those credentials can do. Roles with forensic permission allow users to use the API to run predefined or custom Live Discover queries on selected endpoints.

We recommend giving API users and applications only the level of access they need. You should keep their access as specific as possible. Getting started We can help you to get started using Sophos Central. Manage your account Click Your account name to see options to manage licenses, administrators and support settings, and more. People and devices You can manage your users and user groups and protect their computers.

Policies A policy is a set of options for example, settings for malware protection that Sophos Central applies to protected users, devices, servers, or networks.

Manage your products You can manage your licensed products. Overview The main menu lists the functions available to you in Sophos Central. Dashboard The Dashboard is the start page of Sophos Central and lets you see the most important information at a glance. Alerts The Alerts page lists all the alerts that require your action.

Global Settings The Global Settings pages are used to specify security settings that apply to all your users and devices.

Federated sign-in You can allow your administrators and users to sign in to Sophos Central and Sophos Central Self Service Portal using their Sophos Central Admin sign-in credentials, their Microsoft sign-in credentials, or both. Synchronized Security Synchronized Security monitors outbound mail, and takes action if 5 or more emails that are classified as spam, or contain viruses are sent from a mailbox within a 10 minute period.

Tamper Protection You can turn tamper protection on and off for all your servers and users' computers. Website Management You can control the websites your users can access. Global Exclusions You can exclude files, websites and applications from scanning for threats.

Bandwidth Usage You can configure the bandwidth used for updating the Sophos agent software on your endpoint computers. Encryption Recovery Key Search You can find encryption recovery keys. Configure email alerts You can manage how admins receive email alerts. Multi-factor authentication Sophos Central admins must sign in with multi-factor authentication. Allowed applications You can see applications that you have allowed to run on your computers. Blocked items You can block and clean up suspicious applications.

Controlled updates By default, computers get the latest Sophos product updates automatically. Reject network connections You can configure devices to reject connections from other devices on the network that may be unsafe.

Admin Isolated Devices You can manage any devices you have isolated. Sample Submission To help Sophos identify new threats and update your protection, sample files are automatically submitted to us. Set up and start Live Response Live Response lets you connect to devices to investigate and remediate possible security issues. Data Loss Prevention Rules You use data loss prevention DLP rules to specify conditions to detect, actions to take, and any files to exclude from scanning.

Content Control Lists A Content Control List CCL describes a single type of data for example, a postal address or social security number or a combination of data types for example, a project name near the term "confidential". Email Encryption You can encrypt emails and control the way users access their encrypted emails. Impersonation Protection and VIP Management Impersonation Protection detects phishing emails that pretend to come from well-known brands or important people within your organization.

Keep in mind that you need at least one set of Track API credentials for each workspace. When sending data to Customer. If you have any questions about API credentials in Customer. API credential management is only available to account admins and workspace managers. Adding new credentials Renaming or deleting existing credentials Choosing integration credentials JavaScript snippet Segment Need help?

Warning: Once you disable or delete a credential pair, any access and refresh tokens generated by the credential pair will be revoked and will no longer work.

Click Disable. The API credential pair and any access and refresh tokens it generated will stop working after a few minutes. Click Enable. Have a how-to question? Seeing a weird error? Ask us about it on StackOverflow. Found a bug?