Page History

Lumeta Asset Manager amplifies the value of your security stack by feeding it comprehensive and authoritative data about your network. These feeds are accomplished through the Lumeta Asset Manager API and through various integrated data connectors. Some of these connectors identify vulnerable networks and devices by matching LumetaAsset Manager-discovered data with ingested threat intelligence. Indexed data on these correlations are provided to users via LumetaAsset Manager's browser interface. Unstructured data and query results are delivered via API to other systems in a user's network ecosystem. These enable customers to resolve, re-route, sandbox, patch, and remediate problems when they occur and maintain the health and security of the system as a whole.

The setup to receive data feeds from third party applications to Lumeta Asset Manager involves adding a URL or IP address to your firewall whitelist. This information has been added to each integration's configuration page on Settings > Integrations.

A few representative examples follow:

...

Feed

Update your firewall to allow

...

Image Modified

The IP address

with which you'll need to update your firewall

will display for these integrations:

BlueCat
Carbon Black

Cisco

McAfee DXL

FireMon
McAfee
Qualys
Rapid7
RedSeal
Tenable.sc
Tenable.io
Tripwire

Image Modified

Emerging Threats - http://rules.emergingthreatspro.com

Image Modified

Tor https://check.torproject.orgISC https://isc.sans.eduiDefense
https://api.intelgraph.idefense.com/rest/threatindicator/v0Meraki api.meraki.com

The following table is intended to give you an overview of the dashboards and data sources that are correlated with Lumeta Asset Manager discovered-and-indexed network data. You can sort the table by column heading. Open the Dashboards dropdown on the Home page of this site for more on each add-in.

Type	Integration	Dashboard(s)

IP Address

Risk Management

BlueCat

FireMon Security Manager

BlueCat

FireMon Management Dashboard

Endpoint Detection & ResponseCarbon Black Endpoint ManagementUser IdentificationCisco pxGrid Cisco pxGrid

Cloud	Cloud Defense	DisruptOps Cloud Dashboard
Breach Detection	TOR	Breach Detection
Breach Detection

Emerging Threats

SANS ISC

Breach Detection

Risk ManagementFireMon Security Manager FireMon ManagementNetFlowGigamon Netflow

Breach Detection	iDefense	Breach Detection - iDefense Dashboard
Breach Detection	Proofpoint Emerging Threats	Breach Detection

Host Vulnerability ManagementQualys Qualys ManagementBreach DetectioniDefense Breach Detection - iDefense

Endpoint Detection & Response	VMware Carbon Black	Carbon Black Management Dashboard
Endpoint Detection & Response	Trellix ePO	Trellix ePO Management Dashboard
IP Address Management

Infoblox

BlueCat

Infoblox ManagementBreach DetectionISC Ports Breach Detection Endpoint Detection & ResponseMcAfee ePO McAfee ePO Management

BlueCat Management Dashboard

IP Address Management

Merakinone - integration augments device details

Infoblox NIOS DDI	Infoblox Management Dashboard
Host Vulnerability Management	Qualys	Qualys Management Dashboard
Risk Management

Rapid7

Tripwire

Rapid7

Tripwire Management Dashboard
Endpoint Detection & Response	RedSeal	RedSeal Management Dashboard

Breach DetectionTOR Breach Detection

Host Vulnerability Management	Tenable.sc	Tenable.sc Management Dashboard
Host Vulnerability Management	Tenable

SecurityCenterTenable SecurityCenter Management

.io	Tenable.io Management Dashboard
IP Address Management	Cisco Meraki	Management Station Devices Reports
Risk Management	Rapid7	Rapid7 Management Dashboard
Security Stack Managers	Splunk

Lumeta

Asset Manager's Dashboards in Splunk

Security Stack Managers

Service Now

ServiceNow

(SNOW)

Integration Overview

Security Stack ManagersMcAfee DXL McAfee DXL Management

Page tree

Versions Compared

Old Version 16

New Version Current

Key