You must have the Network integrations license pack to use this feature.
You can integrate Secutec with Sophos Central so that it sends data to Sophos for analysis.
This is an API integration. You need an API token and URL from Secutec.
The key steps are as follows:
- Get an API token from Secutec.
- Add an integration in Sophos Central.
Get an API token
You must be Organization Manager to set up this integration.
To get the API token, do as follows:
- Sign in to Secutec as Organization Manager.
Go to Users
Click the arrow next to Create and select Technical User.
Select your organization, enter a name, and enter an end date for the user account's validity.
Copy the Access token and save it.
The token is shown once only. You can't get it back later. but you can change it if necessary.
The new user is shown in the user list. If you need to change the token or the validity end date, you must be signed in as that user.
Add an integration
To integrate Secutec with Sophos Central, do as follows:
- In Sophos Central, go to Threat Analysis Center > Integrations > Marketplace.
The Secutec page opens. You can configure integrations here and see a list of any you've already configured.
In Data Ingest (Security Alerts), click Add Configuration.
If this is the first integration you've added, we'll ask for details about your internal domains and IPs. See My domains and IPs.
In Integration steps, do as follows:
- Enter a name and a description for the integration.
Enter the Base URL.
The URL for Secutec is
Enter the API token. This is the access token you generated earlier.
We create the integration and it appears in your list.
If your integration shows as Connected, your data should appear in the Sophos Data Lake after validation.