Juniper Sky Advanced Threat Prevention v1.0.0

About the connector

Juniper Sky Advanced Threat Prevention (ATP) uses real-time information from the cloud to provide your business with anti-malware protection. It also defends against sophisticated cyber crimes, including advanced persistent threats and ransomware.

This document provides information about the Juniper Sky ATP connector, which facilitates automated interactions with Juniper Sky ATP using FortiSOAR™ playbooks. Add the Juniper Sky ATP connector as a step in FortiSOAR™ playbooks and perform automated operations, such as retrieving a list of all infected host from Juniper Sky ATP and adding or deleting an infected host as whitelisted or blacklisted on Juniper Sky ATP.

Version information

Connector Version: 1.0.0

Authored By: Fortinet.

Certified: No

Installing the connector

All connectors provided by FortiSOAR™ are delivered using a FortiSOAR™ repository. Therefore, you must set up your FortiSOAR™ repository and use the yum command to install connectors:

yum install cyops-connector-juniper-sky-atp

For the detailed procedure to install a connector, click here.

Configuring the connector

For the procedure to configure a connector, click here.

Actions supported by the connector

The following automated operations can be included in playbooks and you can also use the annotations to access operations from FortiSOAR™ release 4.10.0 onwards:

Included playbooks

The Sample - Juniper-Sky-ATP - 1.0.0 playbook collection comes bundled with the Juniper Sky ATP connector. This playbook contains steps using which you can perform all supported actions. You can see the bundled playbooks in the Automation > Playbooks section in FortiSOAR™ after importing the Juniper Sky ATP connector.

Note: If you are planning to use any of the sample playbooks in your environment, ensure that you clone those playbooks and move them to a different collection, since the sample playbook collection gets deleted during connector upgrade and delete.