Skip to content

FireEye ETP

Cyderes supports the ingestion of email trace data from FireEye's ETP API. For more information regarding FireEye ETP, please visit Trellix's website.

Chronicle Data Types

  • FIREEYE_ETP

Configuration - API Integration

Cyderes requires the ability to use FireEye's Email Trace Request API to obtain email trace data.

Follow steps 1-8 in FireEye's documentation and create an API key. Please give the API Key the following entitlements when completing step 6:

  • iam.users.browse
  • iam.orgs.self.read
  • etp.email_trace.read

Gather Information

Note

Please include the credential's expiration date if available

Provide the following information to Cyderes to complete implementation:

  1. The API Key generated from the Configuration section

  2. The Email Cloud service region being used:

    • etp.us.fireeye.com
    • etp.eu.fireeye.com
    • etp.ap.fireeye.com
    • etp.us.fireeyegov.com

For more information regarding FireEye's Email Trace Request API, please refer to their documentation.