Integrate with VMware Carbon Black

With VMware Carbon Black integration you can monitor end point activity data and block potential threats.

VMware Carbon Black provides endpoint security software that detects and prevents malicious attacks against an organization. When Carbon Black is running in your environment, you can use Device Posture to capture device signals about Carbon Black policy violations that may occur on user devices.


  • End user devices must install and run the VMware Carbon Black agent. Only the Cb Defense product is supported.
  • Authentication to the VMware Carbon Black API requires an API Secret Key and the API ID. You can generate the API Secret Key and API ID from the VMware Carbon Black Defense console.
  • VMware Carbon Black rules are only supported for desktop (Windows and macOS) devices.