Proofpoint TAP

Proofpoint Targeted Attack Protection (TAP) helps enterprises stay ahead of attackers with an innovative approach that detects, analyses and blocks advanced threats before they reach your inbox. This includes ransomware and other advanced email threats delivered through malicious attachments and URLs. 

DataBee uses Proofpoint TAP APIs to get information about messages.

Integration Method: API

Tables: Email Activity, Email File Activity, Detection Finding, Email Activity, Detection Finding

Event Types: messages delivered/blocked, clicks allowed/blocked

Proofpoint TAP Configuration

The integration must be configured with a service credential (Service Principal) and API secret key.

To generate TAP Service Credentials follow the following steps.

• Log in to the TAP dashboard.

• Navigate to Settings > Connected Applications.

• Click Create New Credential.

• Name the new credential set and click Generate.

• Copy the Service Principal and Secret and save them for later use.
  For the more information on generating TAP credentials please follow the steps mentioned in the link Generate TAP Service Credentials.

Note: It is important that you copy these credentials; they will not reappear and are not retrievable after the information box has been dismissed.

DataBee Configuration

1. Login to the DataBee console and navigate to the Data > Data Sources tab

1. Click on Add New Source

2. Search for Proofpoint and select the Proofpoint TAP

1. Select API Ingest

2. Enter basic contact information in the dialog box and click Next

1. In the credentials page:

   • Authorization Method: Basic

   • Username:  Paste the Service Principal generated earlier

   • Password: Paste the Secret generated earlier