Skip to main content

Endpoint Management Integrations

Integrate your endpoint (UEM/MDM) platforms with RAD Security to bring managed-device inventory and device compliance posture into a single, correlated view alongside your runtime, cloud, and Kubernetes security data — and trigger remediation on a device directly from RAD. These integrations are read-only for ingestion: RAD Security pulls device inventory and compliance findings from your provider on a scheduled basis. The one exception is device remediation — RAD can trigger a remediation action on a device through your provider. That action is RBAC-gated, requires tenant write permission, and is recorded as an OCSF Device Control Finding for audit.

Benefits

Unified Device Inventory

Aggregate managed-device inventory — hostname, OS, hardware, owner, and compliance state — from your endpoint platform into one dashboard.

Device Compliance Posture

Surface device compliance findings alongside cloud, runtime, and Kubernetes signals for end-to-end coverage.

Device Remediation

Trigger a remediation action on a non-compliant or compromised device directly from RAD, gated by RBAC and audited.

Correlated Analysis

Correlate device posture with runtime and cloud detections to prioritize what matters.

Supported Integrations

Status: AvailableView Setup Guide →Connect Automox to ingest device inventory and compliance findings, and trigger device remediation.Key Features:
  • Managed-device inventory
  • Device compliance findings
  • Device remediation actions
  • API token authentication (Organization ID required)
  • Scheduled data ingestion
Status: AvailableView Setup Guide →Connect Microsoft Intune to ingest device inventory and compliance findings, and trigger device remediation.Key Features:
  • Managed-device inventory
  • Device compliance findings
  • Device remediation actions
  • Azure AD app registration (OAuth client) authentication
  • Scheduled data ingestion
Status: AvailableView Setup Guide →Connect Iru to ingest device inventory and compliance findings, and trigger device remediation.Key Features:
  • Managed-device inventory
  • Device compliance findings
  • Device remediation actions
  • API token authentication
  • Scheduled data ingestion
Status: AvailableView Setup Guide →Connect Jamf Pro to ingest device inventory and compliance findings, and trigger device remediation.Key Features:
  • Managed-device inventory
  • Device compliance findings
  • Device remediation actions
  • OAuth 2.0 client-credentials authentication
  • Scheduled data ingestion

What Data is Collected

Managed devices pulled on a schedule, mapped to OCSF Device Inventory Info (5001).
  • Hostname, operating system, hardware, serial number
  • Device owner and management state
  • Managed / compliant flags and risk level
  • First-seen and last-seen timestamps
Device compliance posture, mapped to OCSF Compliance Finding (2003) and stored as security findings.
  • Compliance state per device and policy
  • Severity and finding context
  • Feeds unified posture analysis and RADBot
The one write capability — RAD is otherwise read-only. RAD can trigger a remediation action on a device through your provider.
  • Gated by RBAC (requires tenant write permission)
  • Recorded as an OCSF Device Control Finding for audit
  • Action and result captured (actor, device, action, result, timestamp)

Use Cases

Compliance Management

Track device compliance gaps from discovery through remediation across your managed fleet.

Asset Visibility

Use managed-device inventory to understand your endpoint estate and reduce the device attack surface.

Threat Response

Trigger remediation on a non-compliant or compromised device directly from RAD, audited end to end.

RADBot Prioritization

Leverage RADBot to prioritize device findings based on real-world impact.

Getting Started

1

Choose Your Platform

Select your endpoint management platform from the supported integrations above.
2

Generate API Credentials

Create API credentials in your endpoint platform with permission to read device inventory and compliance, and to run remediation actions.
3

Configure in RAD Security

Add the integration in your RAD Security workspace with the generated credentials.
4

Verify Connection

Confirm the integration is active and device data is being synced.

Next Steps

Automox Setup

Connect Automox for device inventory, compliance, and remediation

Microsoft Intune Setup

Connect Microsoft Intune for device inventory, compliance, and remediation

Iru Setup

Connect Iru for device inventory, compliance, and remediation

Jamf Pro Setup

Connect Jamf Pro for device inventory, compliance, and remediation

Data Sources Overview

Explore all available data sources

RADBot

Learn how RADBot helps prioritize findings