Enable the Red Canary Plugin for Microsoft Copilot for Security
18 Oct 2024
1 Minute to read
PDF
Contents
Enable the Red Canary Plugin for Microsoft Copilot for Security
Updated on 18 Oct 2024
1 Minute to read
PDF
Article summary
Did you find this summary helpful?
Thank you for your feedback
Follow these steps to enable the Red Canary plugin for Microsoft Copilot for Security.
Upload the plugin manifest to Microsoft Security Copilot
Note:To test this plugin, you must have a Microsoft Copilot for Security instance.Microsoft Copilot for Security has a usage consumption model, and you may incur additional costs from Microsoft for using the Red Canary Plugin for Microsoft Copilot for Security.
Follow theinstructionsoutlined in the Microsoft help docs for installing a custom plugin.
Select Security Copilot Plugin.
Select the .yaml format.
Enter the following URL: (https://rc-customer-tools.s3.us-east-2.amazonaws.com/msft_copilot_plugin/RedCanary_manifest.yaml)
Specify the subdomain URL under theinstance URL you want Security Copilot to use.
Configure the API key as documentedherein the Microsofts help docs.
API Usage
Note: The plugin only uses GET requests and cannot update your Red Canary instance or data.
API Endpoint
Request Type
Prompt
API Role Required
openapi/v3/endpoints
GET
Show me the 25 most recent endpoints in Red Canary
Analyst Viewer
openapi/v3/endpoint_users
GET
Can you show me the most recent 10 endpoint users in Red Canary?