SentinelOne Configuration Guide

1. Introduction

The SentinelOne Connector integrates SentinelOne’s cybersecurity platform with your security orchestration system. It allows automatic ingestion of threat, incident, and endpoint data through API access. Core features include real-time threat visibility, monitoring agent health, and automating security actions like isolating devices.
The connector helps organizations detect and respond to endpoint threats more efficiently by automating data collection and remediation workflows. It enhances security visibility, enables faster incident response, and supports correlation with other tools for a unified defense approach.

2. Prerequisites

Access to the SentinelOne Console
Administrator privileges

3. SentinelOne Setup Guide

3.1. Get Connector Parameters

3.1.1. Access Token

Log in to your SentinelOne Management Console instance with administrative privileges.
Click your username (Admin) on the top right-hand corner.
Select My User.
Click on Actions.
Select API Token Operations.
Click Regenerate API Token.
Copy the API Token.

3.1.2. URL

This is the Base URL from which the SentinelOne Management Console Token came.
For example, if you logged into your Management console at https://usea1-ascera.sentinelone.net/, then your URL is https://usea1-ascera.sentinelone.net/.

3.2. Configure SentinelOne in ASCERA

Sign in to app.ascera.com.
Click on Settings → Connector Profiles.
Click on Create Connector Profile.
In the Connector type field, select the SentinelOne connector.
Provide the desired connector name.
Now update the connector params with the values stored previously
- Base URL
- API TOKEN

3.3. Testing

The connector offers a built-in test functionality that allows you to verify the connection during the configuration phase. This step is essential to ensure that the provided credentials and endpoint details are valid before the connector is activated.

Steps to Test the Connector:

Enter the required parameters:\
- Management URL\
- API Token
Click the Test Connection button after inputting the credentials.
If the details are correct, a success message will confirm the connection.
If not, an error message will help you identify and fix the issue.

1. Introduction​

2. Prerequisites​

3. SentinelOne Setup Guide​

3.1. Get Connector Parameters​

3.1.1. Access Token​

3.1.2. URL​

3.2. Configure SentinelOne in ASCERA​

3.3. Testing​

Steps to Test the Connector:​

4. FAQs and Troubleshooting​