CrowdStrike - Discover Entities Logins
- 02 Apr 2025
- 1 Minute to read
- DarkLight
- PDF
CrowdStrike - Discover Entities Logins
- Updated on 02 Apr 2025
- 1 Minute to read
- DarkLight
- PDF
Article summary
Did you find this summary helpful?
Thank you for your feedback!
CrowdStrike - Discover Entities Logins
Description
CrowdStrike Discover Entities Logins is a playbook that helps organizations quickly and easily identify and monitor user access to their systems. This automation provides a comprehensive view of all user logins, including both successful and failed attempts. It also provides detailed information about the user, including their IP address, user agent, and location. Additionally, the playbook can detect suspicious activity such as multiple failed logins from the same IP address or user agent. This allows organizations to quickly identify potential security threats and take appropriate action. With CrowdStrike Discover Entities Logins, organizations can rest assured that their systems are secure and that their users are safe.
Trigger Request
HTTP Post Request
Headers:
| Key | Value |
|---|---|
| Content-Type | application/json |
- Json body parameters:
| Parameters | Type | Description |
|---|---|---|
| access_token | string | Access token for the CrowdStrike API. Can be achieved by calling to CrowdStrike_Base_Token flow. |
| ids | array | The login IDs to get the details for. |
Supported CDC Versions
- 2.8
Was this article helpful?