Let Oomnitza be your single source of truth!
You'll get visibility of all the devices in your organization as data obtained from VMware Carbon Black Cloud is automatically transformed into consumable information and actionable insights.
Connect Oomnitza and VMware Carbon Black in minutes
Get the information and the insights that you need to reduce costs and the time that you spend on administration tasks such as:
- Configurable dashboards and list views of key information relating to Carbon Black Cloud-managed devices
- Configurable reports to share information about Carbon Black Cloud-managed devices with your colleagues and management
- Configurable workflows that you can easily create for onboarding a user to the Carbon Black Cloud platform
Before you start
Before we can configure the Carbon Black Cloud Extended Connector, you must set the access level for devices to "READ". To create an access level, go to your Carbon Black Cloud console, and open the Add Access Level panel from Settings > API Access > Access Levels tab. For further information, refer to the Carbon Black Documentation: Create an access level.
You also need to have an API Key generated from the Carbon Black Cloud console. For further information, refer to the Carbon Black Documentation: Create an API Key.
Adding your credentials to Oomnitza
- In Oomnitza, click Configuration > Security > Credentials.
- Click Add new credential (+).
- Search for the integration, and then click the forward button > to select the integration.
- Add your API key.
- Click Create.
Integration not in the list? Click Advanced Mode and complete these steps:
- Add the information details.
- Click the AUTHORIZATION tab.
- Ensure that API Key is selected as the Authorization type.
- Ensure that the Token Name is X-AUTH-TOKEN
- Enter the API Key.
- Ensure that Add to Header is selected.
- Click Create.
Adding global variables
To save time entering information when you create the integration and the workflow, you can add the CarbonBlack hostname and port number as a global variable in Oomnitza.
- From the menu, go to Configuration>General.
- Click Global Settings.
- Click Add new variable (+).
- Enter CarbonBlack.Hostname as the variable name. Possible values include:
- EAP01 - https://defense-eap01.conferdeploy.net
- Prod 01 - https://dashboard.confer.net/
- Prod 02 - https://defense.conferdeploy.net/
- Prod 05 - https://defense-prod05.conferdeploy.net/
- Prod 06 - https://defense-eu.conferdeploy.net/
- Prod NRT - https://defense-prodnrt.conferdeploy.net/
- Prod Syd - https://defense-prodsyd.conferdeploy.net/
- Enter your CarbonBlack hostname.
- Repeat the steps above and add the CarbonBlack.OrgKey and CarbonBlack.OrgId variable and value. You can find both in the Carbon Black Cloud Console under Settings > API Access.
- Save your changes.
Creating the asset integration
- In Oomnitza, click Configuration> Integrations> Overview.
- Click Block view
- Scroll down to the Extended section for asset integrations.
- Click NEW INTEGRATION.
- Select the integration in the sidebar.
- Click ADD.
More information is provided about the following fields to help you complete the integration:
- Integration preferences: By default, the option Create & Update is selected, which allows for editing existing asset records and adding new ones. If your goal is only to edit existing asset records, choose Update Only. On the other hand, if you only want to add new records, select Create Only.
To review or update the integrations details, click the pencil:
- Update the integration name if necessary.
- For installation type decide whether you want to store the credentials locally or in Oomnitza:
- Select Local if you want to store credentials locally. This mode does not support OAuth or AWS authentication.
- Select Cloud if you want to store credentials in your Oomnitza instance.
- For integration preferences, select an option.
- Enter the name of the integration user.
Choose one of the following options:
- Select the credentials that were created for the integration.
- Edit the credentials that were created for the integration.
- Create new credentials
By default, user data is streamed to Oomnitza once every day.
You can configure the schedule to meet your needs such as changing the interval or changing the time so that the data is streamed when your system isn't busy.
- Click the pencil.
- Configure your schedule.
- Click Update.
To map the fields to Oomnitza, click the pencil.
Creating custom mappings
The following fields can be mapped from Carbon Black Cloud using Oomnitza's User Interface.
Note: Mappings are dependent on the customer instance and not all fields may be available within your instance.
mac address (formatted) - like AA:BB::CC::DD::00::11
* The email of the user who installed the sensor (refer also to the invite preset below)
Did you know?
You can define rules for your integration by selecting Edit integration on the mapping page. For example, you may only want to run the integration if a certain contact or region exists. See Filtering integration results.
You can add new fields to your integration by selecting Add new field on the mapping page. All you need to do is specify the property name. See Creating custom API fields.
Launching the integration
Your integration is in Draft mode until all the required mandatory fields are added. Once you have added all of the required fields, select Launch to activate your integration.
If you selected Cloud as the installation type when creating the integration, refer to Running an extended integration
If you selected Local as the installation type when creating the integration, refer to Running an extended integration locally.
Getting your results
To view the information that is collected about your assets, click Assets. To view the information about software, click the Software tab.
To view the information that is collected about your users, click People. If you selected User plus SaaS User when running the user integration, you can also find a list of users in the Software > SaaS menu
Creating asset workflows with the API block
To create an asset workflow, you must select credentials and enter the global variables added to Oomnitza.
To choose a preset, complete these steps:
- Click Configuration > Workflows
- Click Add (+) and select Assets from the list.
- Drag and drop the API block onto the Sandbox.
- Click Edit on the API block and enter Carbon Blackin the search field.
- Select the Invite User/Asset preset.
- To choose a preset, click the forward arrow (>).
- Configure the API Block following the preset instructions below, and save your changes.
- Edit the Begin Block and add rules to trigger the workflow. For example, if you set the Actions to New you can trigger a workflow every time a new asset is created. Refer to Using the Begin block.
- Connect the Blocks.
- Save, validate, and activate your workflow.
Using the Invite User/Asset preset
Using this preset allows you to trigger the sending of an email from VMWare Carbon Black to a given user, and mimics the Send installation request function in the Carbon Black Cloud Web UI. The email contains a link to download the installs as well as a unique code for the user to enter when running the installation. This feature enables you to roll out Carbon Black to new users in your organization easily and is especially useful if you don't want to deploy it using an MDM or client management solution. In addition, you can connect the user with the asset which makes it easier to track the assigned user once you load these assets via the asset load connector. This is particularly helpful if you are within a domain-less enterprise and allow all end users to be admins on their devices.
This API is not officially supported by VMWare and as such please use it with caution and at your own discretion. Also, this will require Super Admin rights, which might not be suitable for everyone.
Unleash the power of Oomnitza
To get valuable actionable insights that help you manage your assets, learn how to:
- Configure dashboards for your users and software
- Configure custom reports about your users and software
- Create workflows to automate tasks
See Getting started for more information.