Authorization

When you add a SentinelOne card to a flow for the first time, Okta Workflows prompts you to configure the connection. This connection links to your SentinelOne account and saves your account information, so you can reuse the connection for future SentinelOne flows.

Note:

You can create multiple unique connections and manage them from the Connections page in the Okta Workflows Console.

Allow a user to generate an API token

Follow these steps to grant a user permission to generate an API token.

Sign in to SentinelOne as an administrator.
Go to Settings > Users.
Select a user and click Actions > API Token Operations.
Click Allow API token generation.

Generate the API token

Follow these steps to generate a new API token.

On the SentinelOne dashboard, click your username.
Go to My user > Actions > API Token Operations and click Generate API token.
After the token is generated successfully, click Copy API Token to use it later in your API requests.

CAUTION:

For security reasons, the API Token is a one-time value that is only displayed on the confirmation page. You cannot retrieve the token after you leave the page. If you lose the API token, you must regenerate it.

Copy the tenant URL

The tenant URL is the base URL for your API requests. For example, if your URL is: https://tenant.sentinelone.net, your tenant is tenant.

Create a SentinelOne connection

To create a SentinelOne connection in Okta Workflows, perform the following steps.

Open the Connections tab in the Workflows Console or open a SentinelOne card.
Click New Connection.
Enter a connection Name. This is useful if you plan to create multiple connections to share with your team.
Optional. Enter a connection Description. This is useful to have more information regarding your connection.
In the Tenant field, enter the subdomain from your SentinelOne URL.
In the API Token field, enter the API token value.
Click Create.

Note:

The SentinelOne connector requires an admin role to create a connection.

API token reissue

Manually reissue the API token after it expires.

On the SentinelOne dashboard, click your username.
Click My user > Actions > API Token Operations > Regenerate API token.
After the token is created, click Copy Token to use it later in your API requests.

Privileges and scopes

A user's privileges determine the API endpoints and actions that they can perform.

Standalone View privileges allow GET requests only.
A combination of View, Create, Edit, and Delete privileges allow GET, PUT, POST, and DELETE requests.
The AllowGenerateApiToken privilege grants permission to create an API token.
A user's permissions, scopes, and API endpoints are determined by their assigned privileges. For example, for the Users resource, you may grant View, Create, Edit, Delete, and AllowGenerateApiToken privileges, while for the Accounts or Roles resource, you may grant only the View privilege.