# Execute Response Actions with SonicWall This configuration will establish a trusted relationship between Radiant Security and your SonicWall firewall to enabled automated and one-click execution tasks.

Available actions

The following action is available after you set up the SonicWall API action connector. Keep in mind, additional permissions are required. * Block IP Address

At the end of this configuration, you will provide Radiant Security with these values: * **Administrator Username** * **Administrator Password** * **SonicWall Base URL (public IP)** ### Prerequisites * [ ] Admin access to SonicWall * [ ] Network connectivity {% hint style="info" %} **Note**: Radiant Security needs to be able to connect to the Firewall HTTPs management to be able to execute the actions. Radiant Security IP addresses are listed below. {% endhint %} ### **Radiant IP addresses:** * 100.21.80.201 * 52.11.97.167 * 35.164.70.154 ### Add an administrator in SonicWall 1. Login to your SonicWall firewall. 2. Navigate to **Device > Settings > Administration - Audit/SonicOS API.** ![](/files/x47zUcDHy75y1Ei4R43Z) 3. Enable the **SonicOS API** toggle button. 4. Enable **RFC-2617 HTTP Basic Access authentication.** 5. Click **Accept** to apply the changes. 6. Navigate to **Network > System > Interfaces.** 7. Click the interface assigned to **WAN** and click the **Pencil button** to edit it. 8. For **User Login**, enable the **HTTPS** option.

Click **OK** to apply the changes. 9. Navigate to **Device > Users > Local Users & Groups.** 10. Click **Add User** and enter the following information: * Name: `RadiantSecurityAdmin` * Password: Set a secure password Keep all of the other default settings unchanged.

11. Click the **Groups** tab. 12. Select **SonicWALL Administrators** from the left panel and click the right facing arrow to add it to the right panel. 13. Click **Save**. 14. On the top panel click **Local Groups**. * Click **SonicWALL Administrators** to edit it. * Click **Administration**. * Enable **Members go straight to the management UI on web login**. * Click **Save**.

### Add the action connector in Radiant Security 1. Login to [Radiant Security](https://app.radiantsecurity.ai/). 2. From the navigation menu, select **Settings** > **Action** **Connectors** and click + **Add Connector** to create a new action connector. 3. Search for and select **SonicWall API** and then click **Credentials.** 4. Under **Credential** **Name**, enter a credential name (use a descriptive name such as Sonicwall - Credentials). 5. Under **Required Credentials**, enter the information you obtained from the previous section: * **Username**: Administrator username * **Password**: Adminiator password * **API Base URL**: SonicWall Base URL (public IP/URL of the firewall) 6. Click **Add Connector** to save your changes. ### Authenticate on the API The SonicWall API uses Basic Authentication, so you must encode the user and password as Base64 using the format `user:password`, and include it in the Authorization header: Example: ```markup user = admin password = 12345 admin:12345 -> base64 encode -> YWRtaW46MTIzNDU= Header: Authorization: Basic YWRtaW46MTIzNDU= ``` --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://help.radiantsecurity.ai/radiant-connectors/data-connectors/sonicwall/execute-response-actions-with-sonicwall.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.