Trend Micro Vision One
  • 08 Dec 2024
  • 1 Minute to read
  • Contributors
  • Dark
    Light

Trend Micro Vision One

  • Dark
    Light

Article summary

Trend Micro Vision One provides comprehensive detection and response capabilities across emails, endpoints, servers, cloud workloads, and networks, all through a single platform or via the managed Trend Micro Vision One service. The integration enables monitoring of alerts, audits, and detection activities.

Integration Method: API

Tables: Incident finding

Trend Micro Vision One Configuration

An API key needs to be set up in the Trend Micro Vision platform.

  1. Sign in to the Trend Vision One Dashboard. 

  2. Click on the left bottom arrow to open the side bar. 

  3. In the side bar menu, scroll down and click on the Administration option. 

  4. In the Administration dropdown, click on API Keys

  5. Click on Add API Key

  6. Fill in the details which are required for generating the API key.

    1. Select Master Administrator in the Role option.

    2. Make sure that the Status is ON.

    3. Click on Add at the bottom of the side window.

  1. You can view the API key and URL highlighted in the red boxes. Save this key for later DataBee configuration 

  2. The Website URL helps identify the data region associated with the user, which is required for API ingestion in the DataBee UI.

    1. You can determine the Trend Vision One site (location/region) based on the Trend Vision One portal URL. Refer to the following docs.

    2. You can determine your base URL as per your site found above for DataBee Input in this API documentation.

The Table below shows the Trend Micro portal URL and base URL for DataBee as per Nov, 2024. This may be subject to change as per API specifications.

Trend Micro Vision One URL prefix

Data Region

API Base URL

https://portal.xdr.trendmicro.com/

United States

https://api.xdr.trendmicro.com

https://portal.eu.xdr.trendmicro.com/

Europe

https://api.eu.xdr.trendmicro.com

https://portal.jp.xdr.trendmicro.com/

Japan

https://api.xdr.trendmicro.co.jp

https://portal.sg.xdr.trendmicro.com/

Singapore

https://api.sg.xdr.trendmicro.com

https://portal.au.xdr.trendmicro.com/

Australia

https://api.au.xdr.trendmicro.com

https://portal.in.xdr.trendmicro.com/

India

https://api.in.xdr.trendmicro.com

https://portal.mea.xdr.trendmicro.com/

MEA

https://api.mea.xdr.trendmicro.com

DataBee Configuration

  1. Login to the DataBee console and navigate to Data > Data Source and click the Add New Data Source button.

  1. Search for Trend Micro Vision One, and click it 

  2. Click on the API Ingest Option. 

  3. Add the details about Data Source Name, Owner Name and Owner E-mail and click on Next.

  4. In the configuration details, enter the following:

    • Authorization Method: Bearer Token

    • Token: Paste the API token generated earlier

    • API URL: Replace the <placeholder> as per the data region found the Trend Micro Portal URL.

  1. Click Submit


Was this article helpful?

Changing your password will log you out immediately. Use the new password to log back in.
First name must have atleast 2 characters. Numbers and special characters are not allowed.
Last name must have atleast 1 characters. Numbers and special characters are not allowed.
Enter a valid email
Enter a valid password
Your profile has been successfully updated.
ESC

Eddy AI, facilitating knowledge discovery through conversational intelligence