Create a service account to bind the API token that is used by the Service Graph Connector for Tanium Endpoints. If a service account for the integration already exists, edit it to assign the required roles.
Procedure
-
Log in to the Tanium Endpoint Console.
-
Navigate to .
-
Add a new user or edit an existing integration user:
- Select New User, and then specify a user name.
- If an integration user already exists, select the Name of the user, and then select Edit Mode.
-
Assign the required roles:
Manual permission configuration isn't required because these roles automatically assign all the necessary permissions (such as Gateway API access and Sensor read access).
-
If the integration uses additional sensors, assign read permission for the additional sensors, and then enable access to their content sets.
-
Assign the required Computer Group access to import data.
If Computer Group access isn't assigned, data won't be returned after an API call.
-
Select Save to complete the configuration.