Supported Connectors🔗
Note
The terms Alerts and Investigations have recently been changed to Detections and Cases in Taegis XDR. You may still see references to the old terms while we continue to work towards platform convergence of Sophos and Taegis technologies. For more information, see Taegis Terminology Updates.
Note
Each connector has built-in documentation that outlines the requirements for the connector type. Select Documentation from a connector or configured connection in XDR to open this in a new tab.
XDR supports numerous integrations, including but not limited to the following.
Tip
Find a changelog of the most recently published playbook templates, actions, and connectors, as well as updates to existing templates and connectors on Automations Overview.
| Vendor | Product | Version | Description |
|---|---|---|---|
| 4me | ITSM | 1 | Integration with 4me |
| Amazon Web Services | Identity and Access Management | Integration with Amazon Web Services support to take actions on Identity and Access Management users | |
| Amazon Web Services | WAFV2 | Integration with Amazon Web Services WAFV2 | |
| Atlassian | Jira | Integration with Atlassian Jira Cloud or Jira Server | |
| Atlassian | Opsgenie | Integration with Atlassian Opsgenie which will support one-way synchronization of XDR Cases as well as High & Critical detections into Opsgenie alerts or incidents | |
| Cisco | Meraki | API Version V1 | Integration to support interaction with Cisco Meraki |
| Claroty | xDome | 1 | Integration with Claroty |
| CrowdStrike | Falcon Endpoint Protection | Integration with CrowdStrike Falcon Endpoint Protection | |
| EverBridge | EverBridge Suite | Integration with EverBridge | |
| Freshworks | Freshdesk | 2.0 | Integration to support creating and querying tickets within Freshdesk |
| Freshworks | Freshservice | Integration to support creating and querying tickets within Freshservice | |
| Generic | Fetch | A generic connector to fetch a document | |
| Generic | Webhook | A generic webhook connector | |
| GitHub | API | 2022-11-28 | Integration to support fetching files from GitHub |
| GitLab | API | v4 | Integration to support fetching files from Gitlab |
| Gmail API | Integration with Google Gmail API | ||
| Workspace Admin SDK API | v1 | Integration with Google Workspace Admin SDK API | |
| Workspace Chat Webhook | Google Workspace Chat Webhook connector | ||
| Halo | ITSM | 2.68.3 | Integration to support creating, updating and querying tickets within Halo ITSM |
| HarfangLab | Endpoint Detection and Response | API V4.9 | Integration with HarfangLab Endpoint Detection and Response |
| JupiterOne | API | Enables JupiterOne API enrichment functions | |
| LDAP | LDAP | 1.0 | Integration for Microsoft Active Directory(AD) / AWS Directory Service /Lightweight Directory Access Protocol(LDAP) using LDAP(S) Protocol |
| ManageEngine | ServiceDesk Plus | Can be used to create, update, search and delete requests in ManageEngine Service Desk Plus | |
| Mattermost | Integration with the Mattermost platform | ||
| Microfocus | SMAX | 2022.05 | Integration with Microfocus SMAX |
| Microsoft | Azure OpenAI | Integration with Microsoft Azure OpenAI | |
| Microsoft | Defender ATP | Integration with Microsoft Defender ATP | |
| Microsoft | Graph API | 1.0 | Integration with the Microsoft Graph API |
| Microsoft | Teams | Send messages to Microsoft Teams | |
| Mimecast | Email Security Cloud Gateway | 2.0 | Integration with Mimecast Email Security Cloud Gateway. |
| Okta | Okta | Integration with Okta | |
| OpenAI | API | Integration with OpenAI API | |
| PagerDuty | On-Call Management | Integration with PagerDuty | |
| Palo Alto Networks | Cortex XSOAR | Integration with Palo Alto Networks' Cortex XSOAR | |
| Palo Alto Networks | PAN-OS | 9.1 - 10.2 | Integration to interact with Palo Alto Networks PAN-OS stand-alone or Panorama firewall |
| Salesforce | Slack | Integration with Slack | |
| SCADAfence | Platform | 7.2.1.119 | Integration with SCADAfence Platform |
| SentinelOne | Integration with SentinelOne | ||
| ServiceNow | ITSM | Integration with ServiceNow | |
| ServiceNow | ITSM | Integration with ServiceNow Users | |
| Twilio | API | Integration with the Twilio API | |
| VMRay | VMRay | API Version 2024 | Integration to support interaction with VMRay |
| VMWare | Carbon Black Cloud | Integration with VMWare's Carbon Black Cloud | |
| VMWare | Carbon Black EDR | Integration with VMWare's Carbon Black EDR | |
| Zendesk | Suite | 2.0 | Integration to support creating and querying tickets within Zendesk Suite |
| Zscaler | ZIA | Integration with the Zscaler ZIA API |