WAIT FOR RELEASE --Add docs on SentinelOne integration

[misterpantz]

Description

Related issue

Types of changes

• Functional documentation bug fix (i.e., broken link or some other busted behavior)
• New functional doc capabilities (i.e., filter search results)
• New content
• Revision to existing content
• Chore (non-breaking change that does not add functionality or fix an issue)

Checklist

• I have read the README document about contributing to this repo.
• I have tested my changes locally and there are no issues.
• All commits are signed.

[github-actions]

Starting creation of the PREview environment...

[github-actions]

PREview environment has been created at https://mondoo-pre-docs-2832993549.storage.googleapis.com/docs/index.html
Please allow a few minutes for the environment to be fully deployed.

[github-actions]

PREview has been updated at https://mondoo-pre-docs-2832993549.storage.googleapis.com/docs/index.html

[github-actions]

PREview has been updated at https://mondoo-pre-docs-2832993549.storage.googleapis.com/docs/index.html

[github-actions]

PREview has been updated at https://mondoo-pre-docs-2832993549.storage.googleapis.com/docs/index.html

[github-actions]

PREview has been updated at https://mondoo-pre-docs-2832993549.storage.googleapis.com/docs/index.html

[github-actions]

PREview has been updated at https://mondoo-pre-docs-2832993549.storage.googleapis.com/docs/index.html

[czunker]

Thank you @misterpantz

[misterpantz]

I've applied your changes, @czunker. Would you please review and re-approve? Thanks!!

[github-actions]

PREview has been updated at https://mondoo-pre-docs-2832993549.storage.googleapis.com/docs/index.html

[charlesjohnson]

One bit of feedback on the scoping for the user in SentinelOne:

My first time creating an API user, I made an API user scoped on 'site' to start.

SITE --> Account --> Site, Viewer permissions.

This didn't work, I got 403's from SentinelOne when the integration tried to run.

I made a second API user scoped on Account --> Site, Viewer permissions, and this one worked.

Not sure what notes if any we need to make here to help, but I stubbed my toe on it.

[github-actions]

PREview has been updated at https://mondoo-pre-docs-2832993549.storage.googleapis.com/docs/index.html

[misterpantz]

@charlesjohnson when was that? I ask because this morning I updated the docs per @czunker -- I now stress that you have to set scopes for an account, specifically not for a site. But if you followed the docs today and selected a site, then I need to be more emphatic. :)

[misterpantz]

Oh I did just fix a typo in there!

[czunker]

I've applied your changes, @czunker. Would you please review and re-approve? Thanks!!

👍 Thanks @misterpantz