What is Kandji? #
Kandji is a cloud-based platform for centrally managing and securing your Mac, iPhone, iPad, and Apple TV devices that includes one-click compliance templates and 150+ pre-built automations, apps, and workflows.
Why Should You Use the Kandji Connector? #
The Kandji connector provides visibility into the assets in your environment. You can use this visibility to:
-
ensure assets are managed per your security policies
-
derive relationships between assets, users, applications, and data
How Does This Connector Work? #
Lucidum executes read-only requests to the Kandji REST API and ingests only meta-data about Kandji devices. Lucidum does not retrieve any data stored on your assets.
Configuring the Connector in Lucidum #
| Field | Description | Example |
|---|---|---|
| Profile Name | Name of this profile for the connector | production servers |
| URL | The URL for the Kandji API. | https://myserver.api.kandji.io |
| API Token | An API token that provides read access to device data and user data. For details on creating an API token in Kandji, see https://support.kandji.io/kb/kandji-api#generate-an-api-token. | p7g444S3IZ5wmFvmzWmx14qACXdzQ25b |
Toggles #
| Toggle | Description |
| Fetch Vulnerabilities | Ingest data about vulnerabilities. Disabled by default. |
| Fetch Threats | Ingest data about threats. Disabled by default. |
| Kandji Device | Ingest data from the Device APIs. Enabled by default. |
| Kandji User | Ingest data from the User APIs. Enabled by default. |
Source Documentation #
Creating Credentials #
To create an API Token:
https://support.kandji.io/kb/kandji-api#generate-an-api-token
Required Permissions #
The Kandji token must have read access to Device data and User data. For details on defining permisions, log in with auditor access or greater and follow these steps:
https://support.kandji.io/kb/kandji-api#inspect-or-modify-a-token
API Documentation #
https://api-docs.kandji.io/?_gl=1*apwlhy*_gcl_au*MTU3NTA4OTQzMS4xNzUxODk4NTMz
