Cisco Meraki
Meraki provides cloud-managed IT solutions, from networking appliances to endpoint management.
This Integration enables the following:
- One (or more) Meraki Dashboard(s) can be integrated with a single Cisco XDR tenant using single-click OAuth workflow. This enables the following:
a) XDR Incident Manager view gets mirrored in Meraki Dashboard under Organization -> Security Center -> XDR Incidents
b) Meraki Organization admin can assign and change status of an XDR incident from within the Meraki dashboard, and can pivot to a specific incident in XDR
c) Meraki System Manager networks connect to XDR Asset Insights for providing device attributes
d) XDR Automation workflows support response actions to MX appliances by issuing L3 firewall block rules
- Agentless flow on NetFlow records from Meraki MX appliances to Cisco XDR for producing network-based security detections. This agentless path requires MX to be running firmware 19.1 or higher.
These are workflows that you can install in Cisco XDR automation and use with this integration. These are different from built-in workflows which are built into Cisco XDR by default for all customers.
These actions can be used in Cisco XDR automation to build workflows for this product. Workflows can help you automate how you investigate, respond to incidents, and more.