KnowBe4
  • 2 Minutes to read
  • PDF

KnowBe4

  • PDF

Article summary

About this document


This document provides a step-by-step procedure to configure the KnowBe4 in SAFE. 

Introduction


SAFE seamlessly integrates with KnowBe4 KMSAT, and this integration allows SAFE to pull the Phishing results from KnowBe4 at pre-defined intervals, eliminating the need for manual data uploading. These phishing results act as signals for users that help get information about MITRE ATT&CK techniques which might be possible in relation to these users. You can configure KnowBe4 in SAFE via APIs from Integrations, on the left navigation.

Prerequisites


To configure KnowBe4 in SAFE, you need the following details: 

  1. Base URL (Refer to KnowBe4 documentation to get the Base URL)

  2. API Key

Generate API Key


Follow the below step-by-step procedure to generate the KnowBe4 API Key:

  1. Login to KnowBe4account as admin.

  2. Go to the Account Settings.

  3. Click the Account Integrations from the left menu.

  4. Click the API option.

  5. Mark the "Enable Reporting API Access" checkbox. 

  6. The system generates an API Key. Save this API Key. You need to use this API Key while configuring the KnowBe4 in SAFE.
     

Configure KnowBe4


To configure the KnowBe4 in SAFE:

  1. Log in to your SAFE account as Admin.

  2. Click on the Integrations, on the left navigation.

  3. Click the KnowBe4 card. The system opens the KnowBe4 configuration page.

  4. Enter the Base URL and API Key.

  5. Select a date in the "Ignore Campaign that completed before" field. Any Phishing Security Tests (PSTs) that have finished before this date will not be considered in the assessment process. Only the most recent phishing campaign results for a user are taken into account by SAFE. Therefore, there is no need to retrieve data from older campaigns.

  6. Enter the Auto Sync Frequency in the number of days.

  7. Enter the "Control Expiry Duration" in the number of days. This decides how long an assessment from Knowbe4 will stay valid for a user without any updates.
    For example, if it's set to 15 days, an assessment without updates for 15 days will be removed. The setting should match how often the organization runs phishing campaigns so that old results are not removed before new ones are available.

  8. Click the Test Connection button to validate the connection details.

  9. Once the connection is validated, click the Save button.

  10. Once the configuration is saved, click on the SyncNow button to trigger the on-demand sync outside of the scheduled auto sync.

View Result


  • Go to the Integration homepage.

  • Scroll to find the KnowBe4 integration card or search for KnowBe4 in the search bar.

  • Click on the KnowBe4 integration card for Finding View and Asset View.

    • Finding View: This tab displays all the findings details pulled from KnowBe4.

    • Asset View: This tab displays all the Asset details pulled from KnowBe4.

History


Learn More about Integration History here.


Was this article helpful?

What's Next