Adaptive Shield

In this guide, you will set up a trusted relationship between Radiant and your Adaptive Shield account to allow Radiant to collect security and audit events.

Prerequisites

• Admin user account on Adaptive Shield

Add the data connector in Radiant Security

1. Log in to Radiant Security.

2. From the navigation menu, click Settings > Data Connectors and click + Add Connector.

3. Search for and select the Adaptive Shield Webhook option and then click Data Feeds.

4. Under Select your data feeds, select Adaptive Shield Webhook and click Credentials.

5. Under Credential Name, give the credential an identifiable name (e.g. AdaptiveShield Token).

6. Under Required Credentials, in the Connector tag field, enter a value that will be used to calculate your unique Token.

7. Click Add Connector.

8. Copy the Token and WebHook URL. Store them safely as both values are required in the next steps.

9. Click Done.

Set up the Splunk HTTP Collector integration in Adaptive Shield

1. Log into the Adaptive Shield console.

2. Navigate to Settings > Event Destination.

3. Click Add a New Event Destination.

4. Select Splunk.

5. Enter a name for the integration, such as RadiantSecurityConnector.

6. Enter the following integration details:

   • HEC URL: Enter the WebHook URL that you generated in the previous section

   • Token: Enter the Token that you generated in the previous section

1. Click Next, then click Test the connection.

2. Click Finish.