# Mimecast API 2.0

In this guide, you'll configure the integration between Radiant and Mimecast. Adding this data connector gives your organization visibility into phishing links accessed from unmanaged devices. With this data, Radiant Security can detect users who clicked on malicious links from personal devices, enabling deeper investigations and uncovering the full scope of an incident.

At the end of this configuration, you will provide Radiant Security with these values:

* **Client ID**
* **Client Secret**

<details>

<summary><i class="fa-bolt-lightning">:bolt-lightning:</i> <mark style="color:red;">Available actions</mark></summary>

The following actions are available after you set up the Mimecast data connector. Keep in mind, additional permissions are required.

* Block Sender
* Block URLs

</details>

### Prerequisites

The designated administrator must be assigned a Role with the following criteria:

* [ ] Read and Edit API Application Permissions under the Service Menu
* [ ] Security Permissions setting must permit the Management of Application Roles

### Create the custom role

1. Log in to your [Mimecast console](https://login-us.mimecast.com/administration/app/) as an administrator.
2. In the menu, click **Account**, then select **Roles**.
3. Click **New Role,** set the **Name** and **Description** as **Radiant Security API 2.0**.
4. On **Security Permissions,** select **Cannot Manage Roles**.
5. On **Application Permissions**, leave the following settings enabled:
   * Account Menu | Logs | Read
   * Gateway Menu | Policies | All
   * Gateway Menu | Managed Senders | All
   * Services Menu | URL Protection | All
   * Directories | Groups | All
   * Monitoring Menu | URL Protection | All
   * Directories Menu | Managed Senders | All *(in case it exists on the UI)*
6. Click **Save and Exit**.

### Configure the Mimecast API

1. Log in to your [Mimecast](https://login-us.mimecast.com/administration/app/) console as an administrator.

<figure><img src="https://2439665791-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FPsFulb2ZOtSPcRSc2rXE%2Fuploads%2FJx68pQaqJh2qlkkBATxz%2FMimecast_API_01.webp?alt=media&#x26;token=4db42889-4084-4d68-b167-30a91bf2c6b6" alt=""><figcaption></figcaption></figure>

2. In the administration menu, click **Services,** then select **API and Platform Integrations.**
3. Under **Mimecast API 2.0,** click **Generate Keys.**

<div align="left"><figure><img src="https://2439665791-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FPsFulb2ZOtSPcRSc2rXE%2Fuploads%2FsscpFkrt7P06P6OI6gNu%2FMimecast_API_02.webp?alt=media&#x26;token=39f9e976-b5d2-4c63-bc01-7ef086ba9b84" alt="" width="261"><figcaption></figcaption></figure></div>

4. On **Application Details**, fill the form with the following values:
   * **Application Name:** `Radiant Security API 2.0`
   * **Category:** `Others`
   * **Products:** Select the following entries:
     * Email Security Cloud Gateway
     * Policy Management
     * Threat Management
     * Audit Events
     * Security Events
     * User and Group Management
   * **Application Role:** `Radiant Security API 2.0`
   * **Description:** `Radiant Security API 2.0 Connector`

<figure><img src="https://2439665791-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FPsFulb2ZOtSPcRSc2rXE%2Fuploads%2FN8ohcCD1U7BaGkHY8FoD%2FMimecast_API_03.webp?alt=media&#x26;token=14aa601f-4e70-45e5-9cfa-f95aeec3fbaa" alt=""><figcaption></figcaption></figure>

5. Click **Next.**
6. Fill in the following values:
   * **Technical Point of Contact:** `<internal user responsible for managing the integration>`
   * **Email:** `<associated email of the technical point of contact>`
7. Click **Next.**
8. Confirm the values in the summary.
9. The wizard completes and displays a pop-up window including your **Client ID** and **Client Secret,** where you can copy and save the credentials for the API application.

<figure><img src="https://2439665791-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FPsFulb2ZOtSPcRSc2rXE%2Fuploads%2FBPhGVNfm2a0gzC7jqptn%2FMimecast_API_04.webp?alt=media&#x26;token=5b47da40-a6cb-407e-82b4-c65e227cd070" alt=""><figcaption></figcaption></figure>

10. Copy the application values for:

* **Client ID**
* **Client Secret**

{% hint style="warning" %}
**Important note:** Be sure to document and store the **Client ID** and **Client Secret** carefully, as they cannot be retrieved later. Also, remember to label which is which, as these will need to be provided to Radiant Security later.
{% endhint %}

### Add the data connector in Radiant Security

1. Log in to [Radiant Security](https://app.radiantsecurity.ai/).
2. From the navigation menu, select **Settings** > **Data Connector** and click **+ Add Connector**.
3. Search for and select the **Mimecast** option from the list and then click **Data Feeds.**
4. Under **Select your data feeds**, select the **URL Protection** click **Credentials.**
5. Under **Credential Name**, give the credential an identifiable name (e.g. `Mimecast Credentials`).
6. Under **Required** **Credentials**, add the **Client ID** and the **Client Secret Token** that you copied from the previous section.
7. Click **Add Connector** to save the changes.

### Add the action connector in Radiant Security

1. From the navigation menu, select **Settings** > **Action Connectors** and click **+ Add Connector** to create a new action connector.
2. Select the **Mimecast API 2.0** connector and click **Credentials**.
3. Select the credential for the data connector that you created previously from the drop-down menu.
4. Click **Add Connector** to save your changes.<br>

&#x20;