- 24 Mar 2025
- 2 Minutes to read
- Print
- DarkLight
Mimecast Audit and Authentication
- Updated on 24 Mar 2025
- 2 Minutes to read
- Print
- DarkLight
Mimecast is a leading cybersecurity company transforming the way businesses manage and mitigate human risk. For detailed information, please refer to the Mimecast official documentation.
Integration Method: API
Tables: Authentication (3002), User Inventory (5003), Account Change (3001), Group Management (3006)
This integration supports the following events.
Event | Description |
---|---|
Audit | Retrieves all the audit events. |
User Management | Retrieves the group members information. |
This integration supports the following versions.
Mimecast API version | v2.0 |
Note:
Mimecast is a continuously updated cloud service. As for this document preparation, the latest release was on February 17, 2025. For more information, refer here.
Prerequisites
The user should have access to the Mimecast portal with an account that has the Administrator privileges.
The user should have access to the DataBee console.
Configuration Overview
Generate the API token with the required scopes
Add the Mimecast Audit and Authentication data feed in the DataBee console with the below parameters.
DataBee Parameter
Mimecast Parameter
Client Key
Client Secret
Mimecast Audit and Authentication Configuration
Login to the Mimecast portal and click on Administration Console.
In the “Administration Console” page, click on Services and then click on API and Platform Integrations.
In the “API and Platform Integrations” page, under Available Integrations, click on Generate Keys below the Mimecast API 2.0.
Review and acknowledge the “Disclaimers” page.
In the “Details” page, fill in the details for application name and in the ‘Category’ drop down, click on Other.
In the ‘Products’ drop down, select User and Group Management and Audit Events and click APPLY.
In the ‘Application Role’ drop down, select Basic Administrator.
Write a ‘Description’ for the key and then click on Next.
In the “Notification Settings” page, enter the required details for ‘Technical Point of Contact’ and ‘Email’ and click Next.
In the “Summary” page, review the details and click Add and Generate Keys.
Copy the Client Id and Client Secret and click Close.
Note:
The Client Secret cannot be retrieved after this, so make sure you have copied this to a secure place.
DataBee Configuration
Login to the DataBee UI, navigate to Data > Data Feeds and click the Add New Data Feed button.
Search for the Mimecast Audit and Authentication and click it as shown below.
Click on the API Ingest option for collection method.
Enter feed contact information and click Next.
In the configuration page, confirm the following:
Authorization Method: OAuth2
API Base URL: this is the base URL that DataBee will interact with.
Client Key: paste the Client Key which was copied earlier.
Client Secret: paste the Client Secret which was copied earlier.
Token URL: this is the token URL that DataBee will interact with.
Event Types: preselected for all the event types that integration pulls.
Click Submit.
Troubleshooting Tips
Ensure the client key and secret is pasted correctly. Since you cannot view the secrets after the 1st time, re-create the secrets, paste it on a text editor to ensure no spaces or unexpected characters are included and reconfigure the DataBee feed.
Ensure the Mimecast scopes/permissions are correct.