ESET ESET

Import your protected endpoints inventory and antivirus detections from ESET

The ESET connector allows you to import your protected endpoints inventory, antivirus detections and license status from your ESET PROTECT Cloud console.

Objective

The ESET connector allows you to import the following information:

  • Protected endpoints inventory
  • Antivirus detections and incidents
  • License and protection status

Prerequisites

  • Access to ESET PROTECT Cloud with administrator or Root/Superuser rights
  • ESET Connect enabled on your account

Authentication

This connector uses the ESET Connect API gateway, which authenticates via JWT (JSON Web Tokens). An API user account must be created by a Root or Superuser administrator.

Procedure

Create an API User Account

  1. Log in to the ESET PROTECT Cloud console with Root or Superuser rights.
  2. Navigate to More > Users > Add new > API user.
  3. Enter a username and description for the API user (e.g., "OverSOC Connector").
  4. Assign the required permissions (read access to endpoints, detections, and licenses).
  5. Click Create.
  6. ESET generates credentials for the API user — store them securely.

Authenticate and Obtain a JWT Token

  1. Use the API user credentials to authenticate against the ESET Identity Provider (IDS).
  2. The IDS returns a JWT token to include in the Authorization header of subsequent API calls.
  3. The token has a limited validity period and must be refreshed periodically.

Configure in OverSOC

  1. In OverSOC, go to Data Sources Settings > Sources.
  2. Select ESET and click Configure.
  3. Enter the ESET PROTECT Cloud API URL.
  4. Enter the API user credentials.
  5. Click Save Configuration.

Official Documentation

For more information, see the ESET Connect Documentation.

Previous← Bitdefender GravityZoneNextKaspersky Security Center →