# Airlock Digital

In this guide, you'll configure Airlock Digital to send execution telemetry and agent information to Radiant Security. 

At the end of this configuration, you will provide Radiant Security with the following values:

* **API Hostname**
* **Api Key**

### Prerequisites

* [ ] Admin access to Airlock Digital console

### Add the necessary permissions

In Airlock Digital, API keys are tied to individual user accounts. To use an API key effectively, the associated user must belong to a group assigned the required API Roles.

To manage permissions, you have two options:

* **Modify an existing group:** Add the necessary API Roles to a group the user already belongs to.
* [**Create a new group**](#create-a-new-group)**:** Establish a new group specifically for API access and add the user to it.

### Create a new group

1. Navigate to **Settings**.
2. Select the **Users** tab.
3. Click **+ Create** under the **User Group Management** section.
4. In the **Add User Group** window that appeared:

   1. Enter a clear, recognizable name (e.g., `Radiant API Access`).
   2. Scroll to the **Rest APIs Roles** section and select these specific roles: 
      * `agent/find`
      * `logging/exechistories` 
      * `logging/svractivities`

   <figure><img src="https://2439665791-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FPsFulb2ZOtSPcRSc2rXE%2Fuploads%2FucaBdLZnNLRqboXL8Zsl%2Fimage.png?alt=media&#x26;token=b8b0c99b-b866-4ee0-abd6-1fdc5bfe4b47" alt=""><figcaption></figcaption></figure>
5. Click the **>>** button to move the selected roles into the **Current Roles** list.
6. Click **Save**.

### Generate the API key

1. Navigate to your user profile.

<div align="left"><figure><img src="https://2439665791-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FPsFulb2ZOtSPcRSc2rXE%2Fuploads%2FyxLe2GTbA0doVIgCPLSx%2FAirlock_2.png?alt=media&#x26;token=f0fcfe36-e202-4529-a85b-4c9d59b65870" alt="" width="375"><figcaption></figcaption></figure></div>

2. Select the newly created group and click the > button to move it to your **Current User Groups** list.

<div align="left"><figure><img src="https://2439665791-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FPsFulb2ZOtSPcRSc2rXE%2Fuploads%2Fys9OwbdONUF2Z5GsclRQ%2FAirlock_3.png?alt=media&#x26;token=ac2b676f-ce53-4763-afc9-199626d08f0d" alt=""><figcaption></figcaption></figure></div>

3. Click **Generate API Key**.
4. Copy the key to a secure location.

### Add the data connector in Radiant Security

1. Log in to [Radiant Security](https://app.radiantsecurity.ai/).
2. From the navigation menu, select **Settings** > **Data Connector** and click **+ Add Connector**.
3. Search for and select the **Airlock Digital** option and then click **Data** **Feeds**.
4. Under **Select your data feeds**, select `Airlock Digital Execution History` and `Airlock Digital Sensor Info` and click **Credentials**.
5. Under **Credential Name**, give the credential an identifiable name (e.g. `Airlock-Credentials`).
6. Under **Required** **Credentials**, add the following that you copied from the previous section:
   * **Base URL:** Your console URL appended with the **port :3129**. (Format: `https://*****.managedwhitelisting.com:3129`)
   * **API Key**: Enter the API Key that you generated in the [**Generate the API key**](#generate-the-api-key) section.
7. Click **Add Connector**.