0
10.4.5
Australia, Zurich, Yokohama, Xanadu
Integration
CrowdStrike Falcon Host Integration allows you to push observables in a security incident to a watchlist, enabling them to generate additional alerts. This integration is an implementation of the CrowdStrike Falcon Host - Publish to Watchlist workflow.
CrowdStrike Falcon Host Integration is only available on the ServiceNow® Store.
- Publish to Watchlist workflow
- Execution Tracking workflows and activities
- Collect CrowdStrike Falcon Host Configurations activity
Changed:
- Migration of Workflows to Flow Designer flows.
Before you can use the CrowdStrike Falcon Host integration, you must activate the plugin and then add a user name and password.
Other Requirements:Upgrade information:
If you are upgrading the integration from a previous version(10.3.1), then you must delete the existing configuration and set up a new configuration. The new integration supports OAuth 2.0 authentication. This update requires you to enter the API Client ID and the API Client Secret to authenticate and complete the configuration.