Skip to main content

Cloud ConnectorsExabeam Cloud Connectors Configuration Guide

Code42 Incydr Cloud Connector

Code42 is a backup and recovery software that protects each version of every file and offers data loss detection, insider risk detection, investigation, and response. Code42’s SaaS platform provides its user with unlimited retention and unlimited versions of files with data security and cloud storage. For more information, see the Code42 Documentation.

Incydr is a SaaS data risk detection and response product that allows security teams to effectively mitigate data exposure and exfiltration risks without disrupting legitimate collaboration.

Prerequisites to Configure the Code42 Incydr Connector

Before you configure the Code42 connector you must complete the following prerequisites:

  • Create a new user in Code42 for the Exabeam cloud connector configuration

  • Note the user name and password of the Code42 user

  • Assign the required role to the user

Create a User

To create a user in Code42:

  1. Log in to the Code42 console as an administrator.

  2. Navigate to Administration > Users > Active.

  3. Click the Add a new user icon, then click Add Users.

  4. In the Add User box, click the default Code42 organization, then click Select.

  5. In the Email Address box, specify the email address for the user.

  6. Click Add User. The new user is added to the list of active users.

  7. If you use Single Sign On (SSO) for Code42 authentication, you must add an email address of the user you created to the list of local users by navigating to Administration > Settings > Identity Management > Authentication > Local Users.

    Note

    Updating authentication provider settings enables you to use a third-party application to authenticate users in the Code42 environment. A user added to the local users list can use local authentication only and can troubleshoot issues with the authentication provider. For more information see the Code42 Documentation.

Set a Password for the User

To set a password for the user:

  1. Log in to the Code42 console as an administrator.

  2. Navigate to Administration > Users > Active.

  3. In the list of active users, click the user name of the user that you just created. To search for a user name, use the search box in the left pane.

  4. On the user profile page, click the settings icon, then click Edit.

  5. In the General tab, enter a new password in the Password field.

  6. Click Update User after you confirm the password. Note the user name and password of the Code42 user that you created, to use while configuring the Code42 connector on the Exabeam cloud connector platform.

Assign a Role to the User

To enable the user to access the logs, you must assign a specific role to the user.

To assign a role to the user:

  1. Log in to the Code42 console as an administrator.

  2. Navigate to Administration > Users > Active. A list of all active users appears.

  3. Click the name of a user to whom you want to assign a role.

  4. On the user profile page, click the settings icon.

  5. In the Roles tab, assign Customer Cloud Admin or Security Center User role to the user by moving roles from the list of Available Roles to Current Roles, using the arrow buttons.

  6. Click Update User. The role is assigned to the user.

Configure the Code42 Incydr Connector

Code42 is a backup and recovery software that protects each version of every file and offers data loss detection, insider risk detection, investigation, and response. Code42’s SaaS platform provides its user with unlimited retention and unlimited versions of files with data security and cloud storage. Incydr is a SaaS data risk detection and response product that allows security teams to effectively mitigate data exposure and exfiltration risks without disrupting legitimate collaboration. For more information, see the Code42 Documentation.

The following table displays audit source API and security events supported by the connector.

Audit Source: API

Service, Module, Events

Filevent

Provide file activity such as file created, deleted, modified, and shared

Table 9. Audit source API and security events supported by the connector


To configure the Code42 connector to import data into the Exabeam Cloud Connectors platform:

  1. Complete the Prerequisites to Configure the Code42 Incydr Connector.

  2. Log in to the Exabeam Cloud Connectors platform with your registered credentials.

  3. Navigate to Settings > Accounts > Add Account.

  4. Click Select Service to Add, then select Code42 from the list.

  5. In the Accounts section, enter the required information:

    1. Tenant – Select a tenant to attach to the connector if you are using a multi-tenant edition of Exabeam. Otherwise, select default.

    2. Account Name – Specify a name for the connector. For example, Code42_backup_recovery.

    3. (Optional) Description – Describe the Code42 connector. For example, Enterprise SaaS solution that provides end-user data protection and backup software and services suite.

    4. Username – Enter the user name of the Code42 user that you created while completing prerequisites.

    5. Password – Enter the password for the Code42 user that you created while completing prerequisites.

    6. API Version – Select the API version based on which you want the cloud connector to pull events of various types. API V2 is supported for fetching file events.

    Note

    Required fields are indicated with a red bar.

  6. To confirm that the Exabeam Cloud Connector platform communicates with the service, click Test Connection.

  7. Click Done to save your changes. The cloud connector is now set up on the Exabeam Cloud Connector platform.

  8. To ensure that the connector is ready to send and collect data, Start the connector and check that the status shows OK.