Set up Aruba Central for Integration

1. Create a user account in Aruba Central with read-only access.

   XSOAR uses this account when authenticating to the Aruba Central API.

   1. Log in to Hewlett Packard Enterprise (HPE) with an account that has administrator credentials and navigate to the homepage of your account.

   2. Click Manage at the top of the home page and then select Identity & AccessRoles & PermissionsCreate Role.
   3. Select Create new role, choose Aruba Central, and then click Next to launch a role creation wizard.

   4. Enter a role name such as XSOAR-API-Access and a meaningful description, and then click Next.

   5. Click Add Permissions, select NMS Service, select View, and then click Add.

   6. Click Next on the next page of the wizard and then click Finish on the last page.
      The new role appears on the Roles & Permissions page.

2. Send an invitation to someone to become an Aruba Central user with read-only privileges.

   It makes sense to invite someone who will configure the Aruba Central integration instance on Cortex XSOAR. The purpose of the user account is to configure XSOAR to use it when accessing the Aruba Central API to retrieve device information. Inviting the person who will configure XSOAR means he or she can use the username and password for the user account in the Aruba Central integration instance configuration.

   1. Select Identity & ControlUsersInvite Users.
   2. Enter an email address and choose an HPE GreenLake Role such as Observer.
      The user account will not be used to access HPE GreenLake; however, you must assign an HPE GreenLake role first so that once the user account is created and activated, you can assign it the read-only role you created for it when accessing the Aruba Central application.
      Hewlett Packard sends an HPE Cloud Signup Invite to the email address.
   3. When the recipient receives the email message, he or she clicks Accept Invitation.
      The link opens a webpage where the person can create an HPE account.
   4. The user enters an email address, password, first name, and last name; accepts the HPE terms of use; and then clicks Register.
      The user must share the password with you so you can enter it and the user’s email address (as a username) when configuring an Aruba Central integration instance in Cortex XSOAR later.
      Hewlett Packard sends a verification email to the email address.
   5. When the recipient receives the email message, he or she clicks Activate Account.

   6. Once the account is activated, select Identity & AccessUsers, select the newly activated user, click the Action menu icon ( . . . ), and then click Assign Role.

   7. Choose Aruba Central for Application and XSOAR-API-ACCESS for Role and then click Assign Role.

   8. Confirm the role assignment when prompted.
3. Create an API gateway and get the information for configuring an Aruba Central integration instance in XSOAR.

   1. Return to your HPE GreenLake homepage and click Launch for Aruba Central.
   2. Select OrganizationPlatform IntegrationRest API.
   3. Copy the API gateway domain URL in the API Documentation field and paste it in a text file for use when configuring an Aruba Central integration instance in Cortex XSOAR. For example: https://eu-apigw.central.arubanetworks.com

   4. Click Apps & Tokens+ Add Apps & TokensGenerate.
   5. Copy the generated client ID and client secret and add it to the text file.
   6. Click the user icon in the upper right or the UI, copy the customer ID, and paste it in the text file as well.