In this article, you’ll learn how to integrate Cloudflare Zero Trust with SecurityCoach. Once the integration is complete, data provided by Cloudflare Zero Trust will be available for use in the SecurityCoach tab of your KnowBe4 console. This data can be viewed in SecurityCoach reports and used to create real-time coaching campaigns. For general information about SecurityCoach, see our SecurityCoach Product Manual.

Setting Up the Integration in Cloudflare Zero Trust

Before you can set up this integration in your KSAT console, you'll need to use the Cloudflare Zero Trust platform to create an API Token and copy your Account ID by following the steps below:

1. Log in to your Cloudflare dashboard.

2. Select My Profile from the navigation menu on the left side of the screen. A drop-down menu will display.

   

3. In the My Profile drop-down menu, select API Tokens > Create Token. A new page will open.

   

4. Select Get started to create an API Token with custom permissions. A Create Custom Token window will display.

   

5. In the Create Custom Token window, select the required permission by following the screenshot and the list below:

   

   1. Token name: Enter the desired name for your token. We recommend "KnowBe4 Token."

   2. Permissions: Two permissions are required for this integration.

      For the first permission, use the drop-down menus to select Account, Logs, and Edit.

      Then, select + Add more to add your second permission. For the second permission, use the drop-down menus to select Account, Zero Trust: PII, and Read.

6. Select Continue to summary to view a summary of the permissions you’ve assigned to your API token. Verify that your selections are accurate, then select Create Token.

7. Select Copy to copy your API Token. Make sure to save your copied API token somewhere that you can easily access. You'll need this token when you complete the integration in the Setting Up the Integration in KnowBe4 section below.

   

8. Locate your Account ID in your Cloudflare dashboard URL. Your Account ID can be found immediately after cloudflare.com/ in the URL.

   

Setting Up the Integration in KnowBe4

Once you have created your API Token and copied your Account ID from your Cloudflare Zero Trust account, you can set up the integration in your KnowBe4 console. To register Cloudflare Zero Trust in your KnowBe4 console, follow the steps below:

1. Log in to your KnowBe4 console.
2. Navigate to SecurityCoach > Setup > Security Vendor Integrations.
3. Locate Cloudflare Zero Trust and select Configure.

4. Enter the API Token and Account ID that you saved in the Setting Up the Integration in Cloudflare Zero Trust section of this article.

   

5. Select Authorize.

Map Your Users

After you’ve finished integrating Cloudflare Zero Trust, you can map your users either through mapping rules (recommended) or through a CSV file upload. For more information about user mapping, see our Mapping Users in SecurityCoach article.

Once you’ve successfully authorized this integration, you can manage detection rules for Cloudflare Zero Trust on the Detection Rules subtab of SecurityCoach. For a full list of available system detection rules for this vendor, see our System Detection Rules by Vendor article.