# Airlock Digital

Airlock Digital is an application allowlisting and execution control platform that prevents unauthorized binaries and scripts from running on endpoints. Connecting Airlock Digital forwards execution history and sensor information to Radiant Security through the Airlock REST API. Radiant uses this telemetry to investigate suspicious or blocked executions, attributing endpoint activity to specific users and hosts during AI triage.

Configuration is a one-time setup performed in the Airlock Digital console and Radiant Security. At the end of this configuration, you provide Radiant Security with the following values:

* **Base URL**
* **API key**

### Prerequisites

* [ ] Admin access to the Airlock Digital console
* [ ] Administrator role in Radiant Security

### Create a group and generate an API key in Airlock Digital

For vendor instructions, refer to the [Airlock Digital REST API documentation](https://api.airlockdigital.com/).

In Airlock Digital, API keys are tied to a user account, and the user inherits API permissions from the groups they belong to. The steps below create a dedicated group for Radiant, add the required REST API roles, assign your user to the group, and generate the key. To reuse an existing group, add the same three roles to that group and skip ahead to generating the key.

{% stepper %}
{% step %}

#### Create the user group

In the Airlock Digital console, navigate to **Settings** and select the **Users** tab. Under **User Group Management**, click **+ Create**.

In the **Add User Group** window, enter a descriptive name (e.g., `Radiant API Access`).
{% endstep %}

{% step %}

#### Assign the required REST API roles

Scroll to the **Rest APIs Roles** section and select the following roles:

* `agent/find`
* `logging/exechistories`
* `logging/svractivities`

<figure><img src="/files/xZGqKaKHQEsk5XtIBLgL" alt=""><figcaption></figcaption></figure>

Click the **>>** button to move the selected roles into the **Current Roles** list, then click **Save**.
{% endstep %}

{% step %}

#### Add your user to the group

Navigate to your user profile in the Airlock Digital console.

<div align="left"><figure><img src="/files/hV3202zHoSKDyqcQ1iiC" alt="" width="375"><figcaption></figcaption></figure></div>

Select the group you just created and click the **>** button to move it into your **Current User Groups** list.

<div align="left"><figure><img src="/files/P06CNNRAg58ghleiSZYt" alt=""><figcaption></figcaption></figure></div>
{% endstep %}

{% step %}

#### Generate the API key

Click **Generate API Key**. Copy the key to a secure location.

{% hint style="warning" %}
The API key is shown only once. If it is lost, you must generate a new one.
{% endhint %}
{% endstep %}
{% endstepper %}

### Add the data connector in Radiant Security

1. Sign in to [Radiant Security](https://app.radiantsecurity.ai/).
2. From the navigation menu, select **Settings** > **Data Connectors** and click **+ Add Connector**.
3. Search for and select **Airlock Digital**, then click **Data Feeds**.
4. Under **Select your data feeds**, select **Airlock Digital Execution History** and **Airlock Digital Sensor Info**, then click **Credentials**.
5. Under **Credential Name**, enter a descriptive name (e.g., `Airlock-Credentials`).
6. Under **Required Credentials**, enter the values you copied from Airlock Digital:
   * **Base URL**: your Airlock Digital console URL with the REST API port appended, in the format `https://<your-instance>.managedwhitelisting.com:3129`. Port `3129` is the Airlock REST API default; if your deployment uses a different port, substitute it here.
   * **API Key**: the API key you generated in the previous section.
7. Click **Add Connector** to save the configuration.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://help.radiantsecurity.ai/radiant-connectors/data-connectors/airlock-digital.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.