Skip to main content
Skip table of contents

Tanium Discover

What is Tanium Discover?

Tanium Discover scans networks with hundreds of thousands of endpoints to find unmanaged assets. Administrators can choose to block the devices or bring them under management.

Why Should You Use the Tanium Discover Connector?

The Tanium Discover connector provides visibility into the endpoints in your environment. You can use this visibility to:

  • ensure assets are managed per your security policies

  • derive relationships between assets, users, applications, and data

How Does This Connector Work?

Lucidum executes read-only requests to the Tanium Discover REST API and ingests only meta-data about Tanium Discover devices. Lucidum does not retrieve any data stored on your assets.

Configuring the Connector in Lucidum

Field

Description

Example

URL

The URL for the Tanium Discover API.

https://tanium_discover/api/v2/

Domain

Domain for Tanium Discover.

Username

User name for a Tanium Discover account with read access.

 justynmutts

Password

The password for the Tanium Discover account.

 ************

API Token.

If you are connecting to a Tanium cloud instance, you must provide an API token.

token-1420d91810dc0a14d3afc5b818590d7c9ecab78979d88c539c98eb65e0b67d002b712376dcd9aced2945de079b7148bac03cc83cd5c04b83aede435cbd8a1c63

Verify SSL.

For future use.

N/A

Source Documentation

Creating an API Token

To create an API token for the Lucidum connector to use, following these instructions:

https://docs.tanium.com/platform_user/platform_user/console_api_tokens.html?cloud=true

  • When connecting to a Tanium Cloud instance, an API token must be used.

  • When creating an API token in Tanium, the default value for "Expire in Days" is 7. Lucidum recommends you set this value the maximum allowed value of 365.

  • For details on the API toekn, see the Tanium Documentation on Managing API tokens.

Required Permissions

Object

Permissions

Persona for Lucidum

 Discover Read Only User

  1. Login to the Tanium console with the persona you want the Lucidum connector to use when ingesting data from Tanium.

  2. In the navigation menu, go to the Administration > Users page.

  3. In the User Administration page in the Roles and Effective Permissions section:

    1. Click Edit Roles.

  4. In the Assign Roles page in the Role Management > Grant Roles section:

    1. Click Edit.

  5. In the Edit Grant Roles dialog window:

    1. Select the role named Discover Read Only User.

    2. Click Save.

  6. On the Assign Roles page:

    1. Click Show Preview to Continue.

    2. Click Save.

  7. In the Notice dialog window:

    1. Click Continue.

API Documentation

Contact Tanium customer support for access to the Tanium API v2.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close