| SamurAI [Local] Collector | SamurAI [Cloud] Collector |
|---|---|
 |
This guide describes the steps required to configure and integrate SentinelOne Singularity with the SamurAI platform.
Prerequisites
The following are required to configure the SentinelOne Singularity integration:
- An active SentinelOne Singularity tenant
- Access to the SentinelOne Management Console
- Permissions to create Service Users
Configuration Steps
Step 1 – Create a Service User
Log in to the SentinelOne Management Console with administrator permissions
Navigate to Settings - Users - Service Users
Select Actions - Create New Service User
The following parameters are required with suggestions:
Parameter Note Name samurai-mdr-service (example) Description optional Expiration Date per your security policy Click Next
Step 2 – Assign Scope and Role
- Select the Scope of Access:
- Account (recommended)
In the Role type list assign the Viewer role
Click Create User
Step 3 – Generate the Authentication Token (JWT)
When the service user is created:
SentinelOne displays an API Token (JWT) once
Copy and securely store the token (The token cannot be retrieved again)
Step 4 – Identify the SentinelOne Instance URL
Record the base URL of your SentinelOne Management Console.
Example:
https://<prefix>.sentinelone.net
Where ‘prefix’ is the value provided to you by SentinelOne
Complete the SentinelOne Singularity Integration
Login to the SamurAI Portal
Click Telemetry and select Integrations from the main menu
Select Create
Locate and click SentinelOne Singularity
Click Next (we leverage a Samurai Cloud Collector)
Enter a Name of Integration
Enter a Description (Optional)
Enter your SentinelOne Instance URL
Enter your Authentication Token (JWT)
Click Finish
Our Integration guide was accurate at the time of writing but vendors change things frequently! If you find errors or anything is outdated, let us know by raising a request in the SamurAI MDR Portal and we shall get it updated.