Integrate Proofpoint Targeted Attack Protection (TAP) with Red Canary
- 25 Aug 2025
- 1 Minute to read
- PDF
Integrate Proofpoint Targeted Attack Protection (TAP) with Red Canary
- Updated on 25 Aug 2025
- 1 Minute to read
- PDF
Article summary
Did you find this summary helpful?
Thank you for your feedback!
Proofpoint Targeted Attack Protection (TAP) is a powerful tool designed to shield your organization from advanced email-borne threats.
After integration, Proofpoint TAP alerts are stored within Red Canary, but are not considered strong investigative leads for threat detection.
For more information on how to generate your TAP Service Credentials, see Generate TAP Service Credentials.
Red Canary–Enter your TAP Service Credentials
Enter your Proofpoint TAP Service Credentials to start receiving TAP alerts in Red Canary.
From your Red Canary homepage, click Integrations. If you do not see the required integration, click See all integrations.
.png?sv=2022-11-02&spr=https&st=2025-08-27T18%3A41%3A39Z&se=2025-08-27T18%3A51%3A39Z&sr=c&sp=r&sig=k8I%2FSbV3ybEaG5tmKhklw%2Brj6SMgzimr19UBFoAkr6w%3D)
In the search bar, type and select Proofpoint Targeted Attack Protection.
Click Configure.
Enter a Name.
Under the Ingest Format/Method dropdown, select Proofpoint Tap via API Poll.
Enter your Proofpoint Tap Service Principal.
Enter your Proofpoint TAP Service Secret.
Click Save Configuration.
Click Edit Configuration.
Click Activate.
Was this article helpful?