Creating and Managing API Client in CrowdStrike's Console for Cloud Security (Beta)

1. Introduction

The CrowdStrike Cloud Security Provider uses OAuth 2.0 client credentials for authentication, and requires the use of a Client ID and Secret.

2. Prerequisites

Before you begin, ensure you have:

• Access to the CrowdStrike Falcon Console
• Administrator privileges

3. Creating API Client

Step 1: Access the CrowdStrike Falcon UI Console

• Log in to your CrowdStrike Console instance with administrative privileges.

Step 2: Create an API Client, generate ClientId/ClientSecret with proper scope

• Go to the Support and resources > Resources and tools > API Client and keys section where an API Client can be managed.
• Create an API Client
• Provide a Client name and a related description with read permissions for the following Scopes
  • CSPM registration
  • Cloud Security Assets
• Create the new API Client.
• Securely store the generated Client ID, Secret and Base URL

4. Configure the Integration

URL

The Base URL for your CrowdStrike environment. This can be found in the CrowdStrike Base URLs documentation.

Client ID

The OAuth2.0 Client ID is generated when the new API Client is created via the API Client and keys section in the CrowdStrike Console.

Client Secret

The OAuth2.0 Client Secret is generated when the new API Client is created via the API Client and keys section in the CrowdStrike Console.

Note

The token_url should not be set or configured when setting up the Integration.

5. Important Links in CrowdStrike's Documentation

• CrowdStrike Cloud Security Posture Management
• CrowdStrike OAuth2-Based APIs