This document outlines the steps involved in integrating our API with SIEM. You can follow the instructions given below to integrate PowerDMARC API with SIEM easily.
API Documentation:
Swagger Documentation: https://app.powerdmarc.com/swagger-ui/index.html
Alternative Documentation: https://api.powerdmarc.com/
Steps to connect:
Generate a new token from the Personal Access Tokens section.
Specify the permissions while generating the Personal Access Token. (Permissions can be allowed while generating new tokens as well.)
Open the API documentation at https://app.powerdmarc.com/swagger-ui/index.html in the API Settings main section.
Click on the /swagger.json link, then right-click to download the API collection by saving it as "swagger.json".
Open Postman and import the downloaded collection.
Click on the "view more actions" button, then select "Edit".
Navigate to the Authorization section and select the auth type Bearer Token.
Paste the generated token in the token field and save.
Navigate to the Variables section and add the baseUrl variable with the value "https://app.powerdmarc.com/" under the current value.
To perform your first API request, select the request you want to send and add the baseUrl variable to the request URL.
In the Authorization section of the opened request, select the auth type "Inherit auth from parent". This option should be selected for further requests as well.
Ensure your selected request's parameters, request headers, request URL, and body match the API documentation.
Save the changes and click on the Send button.
Edit collection > Authorization section
Edit collection > Variables section
Request > Authorization section
Request headers - Postman is used to auto-generate request headers. Ensure the Accept - application/json is also included.
Request Body and Environments section
Edit collection and create a token variable
- See the endpoints for audit logs and created baseUrl at the beginning of the URL
- See the token variable added to the appropriate field
