SentinelOne Management API

Tenant-scoped REST API for managing agents, threats, alerts, sites, accounts, exclusions, policies, and reporting in the SentinelOne Singularity Platform. Each customer accesses the API at their own management console hostname under /web/api/v2.1 with an ApiToken Authorization header issued from console user settings.

API entry from apis.yml

apis.yml Raw ↑
aid: sentinelone:management-api
name: SentinelOne Management API
description: Tenant-scoped REST API for managing agents, threats, alerts, sites, accounts, exclusions,
  policies, and reporting in the SentinelOne Singularity Platform. Each customer accesses the API at their
  own management console hostname under /web/api/v2.1 with an ApiToken Authorization header issued from
  console user settings.
humanURL: https://<tenant>.sentinelone.net/api-doc/overview
baseURL: https://<tenant>.sentinelone.net/web/api/v2.1
tags:
- XDR
- EDR
- Endpoint Security
- Threat Management
- REST
properties:
- type: Documentation
  url: https://<tenant>.sentinelone.net/api-doc/overview
- type: Authentication
  url: https://www.stitchflow.com/user-management/sentinelone/api
- type: PostmanCollection
  url: https://www.postman.com/api-evangelist/sentinelone/documentation/btzef0x/sentinelone
- type: GraphQL
  url: graphql/sentinelone-graphql.md