Cloudflare Access

  • Updated on Nov 11, 2025
  • Published on Nov 11, 2025
  • 1 minute(s) read
Prev Next

Cloudflare Access is a Zero Trust Network Access (ZTNA) solution that secures internal applications by enforcing identity, device and context-aware access controls without the need for traditional VPNs. More information can be found on Cloudflare’s official documentation.

Integration Method: API

Tables: Authentication (3002)

This integration supports the following events.

Event

Description

Access Logs

It logs details of each user’s attempt to reach a protected resource, including authentication results, identity, and the requested application.

This integration supports the following versions.

Cloudflare version

v4.0

Note:

Cloudflare Zero Trust’s Access is a continuously updated cloud service. As for this document preparation, the latest release was on July 1, 2025.

Prerequisites

  • The user should have access to the DataBee console.

  • The user should have access to the Cloudflare Account Dashboard.

  • The user should have access to create an API Key with required scopes.

Configuration Overview

  1. Create an API Key from the Cloudflare Account Dashboard.

  2. Add Cloudflare Access data feed in the DataBee console with the below parameters.

    DataBee Parameter

    Cloudflare Access Parameter

    Bearer Token

    API Token

Cloudflare Access Configuration

  1. Login into Cloudflare Account dashboard.
     

  2. Navigate to the top left profile icon and click on Profile.


  3. Click on the API Tokens and Create Token.


  4. Click on the Get started button under Custom token.
     

  5. Give the API token appropriate name. In the permissions section, select Account, Access: Audit Logs and Read. Click the Continue to summary button to continue.

     

  6. Click on the Create Token button.
     

  7. Copy the generated API Token by clicking the Copy button.
     

    Note:

    Copy and save the API token for later use and it will be visible only for the first time.

DataBee Configuration

  1. Login to the DataBee UI, navigate to Data > Data Feeds and click the Add New Data Feed button.

  2. Search for Cloudflare Access and click on it as shown below.
     

  3. Click on the API Ingest option for collection method.
     

  4. Enter feed contact information and click Next.
     

  5. In the configuration page, confirm the following:

    • Authorization Method: Bearer Token

    • API Base URL: https://api.cloudflare.com is base URL DataBee will interact with

    • Token: Paste the previously generated API key

    • Event Types: Preselected for all the event types that integration pulls


  6. Click Submit.

Troubleshooting Tips

  • Ensure that the bearer token is pasted correctly. Since you cannot view the API token after the 1st time, re-create the API token, paste it on a text editor to ensure no spaces or unexpected characters are included and reconfigure the DataBee feed.

  • Ensure the Cloudflare access scopes/permissions are correct.