This article summarizes which IT, OT, IoT and IoMT device attributes can be enriched from our connector with SentinelOne, and the benefits of using that enriched data in policy.
Our integration with SentinelOne is intended to allow customers to use the most accurate device classifications in policy decisions. Elisity leverages our own rapid device discovery mechanisms along with the SentinelOne analysis so that our customer’s devices get the most appropriate policies applied in a timely manner.
When a new device is discovered by any Elisity methods, CCC queries SentinelOne using the following parameters to identify the device using:
- MAC + IP Address if both available
- MAC Address
- IP Address
Engage Elisity support to modify the behavior of the above query order.
Mapping of SentinelOne data objects to Elisity
Enriched Data in IdentityGraph
The Identity Graph in Elisity provides detailed insights into the devices connected to your network. The enriched data displayed for each device helps administrators quickly assess and manage the security posture and connectivity of their network assets. Below is an explanation of the key elements shown in the enriched data view for a device:
This enriched data allows administrators to have a comprehensive view of the device's identity, risk, and operational status, enabling more informed decision-making regarding network security and policy management.