# Creating and Managing API Client in CrowdStrike's Console for Cloud Security (Beta) The Cloud Security Connector is currently in development and will be expanded with additional Providers and queries in the future. ## 1. Introduction The CrowdStrike Cloud Security Provider uses OAuth 2.0 client credentials for authentication, and requires the use of a Client ID and Secret. ## 2. Prerequisites Before you begin, ensure you have: - Access to the CrowdStrike Falcon Console - Administrator privileges ## 3. Creating API Client ### Step 1: Access the CrowdStrike Falcon UI Console - Log in to your CrowdStrike Console instance with administrative privileges. ### Step 2: Create an API Client, generate ClientId/ClientSecret with proper scope - Go to the **Support and resources > Resources and tools > API Client and keys** section where an API Client can be managed. - Create an API Client - Provide a Client name and a related description with **read** permissions for the following Scopes - CSPM registration - Cloud Security Assets - Create the new API Client. - Securely store the generated Client ID, Secret and Base URL ## 4. Configure the Integration ### URL The Base URL for your CrowdStrike environment. This can be found in the [CrowdStrike Base URLs](https://falcon.us-2.crowdstrike.com/documentation/page/a2a7fc0e/crowdstrike-oauth2-based-apis#k9578c40) documentation. ### Client ID The OAuth2.0 Client ID is generated when the new API Client is created via the API Client and keys section in the CrowdStrike Console. ### Client Secret The OAuth2.0 Client Secret is generated when the new API Client is created via the API Client and keys section in the CrowdStrike Console. ### Note The token_url should not be set or configured when setting up the Integration. ## 5. Important Links in CrowdStrike's Documentation - [CrowdStrike Cloud Security Posture Management](https://falcon.us-2.crowdstrike.com/documentation/page/a879648c/cloud-security-posture-management-falcon-horizon-apis) - [CrowdStrike OAuth2-Based APIs](https://falcon.us-2.crowdstrike.com/documentation/page/a2a7fc0e/crowdstrike-oauth2-based-apis)