RMM: NinjaOne RMM V.11
NinjaOne RMM Integration gives an ability to bulk deploy ConnectSecure Agents and Sync Vulnerabilities.
If you are still using NinjaOne RMM V.10 please use the KB below for configuration
NinjaOne Setup
Navigate to your NinjaOne Portal, login, and click on Administration.
Click on Apps > API > Add client app as shown below.
Select the Application Platform as API Services (machine to machine)
Enter Name: Choose a name of your choice for the Application Platform.
Redirect URL’s are not required; leave blank
Enter Scopes: Select all the fields. (Monitoring, Management, Control)
Select Allowed Grant Types: Client Credentials.
Ensure that only the "Client Credentials" grant type is selected in the allowed grant types configuration. This selection ensures that the OAuth2 flow is restricted to client credentials, suitable for server-to-server authentication scenarios.
When selecting the "Client Credentials" grant type, the system will not require a redirect URL. This is because the client credentials flow does not involve user redirection and is intended for non-interactive authentication scenarios.
Disabling management scope API access will impact company mapping within the platform of ConnectSecure integration and prevent updates to agent deployment variables (such as Company ID, Tenant ID, and Secret Key) for new installations.
Once the application is created successfully, the client’s secret credentials will be created.
Make sure to copy the client's secret credentials before leaving this page. This is the only time you will be able to view your client secret.
Next Navigate to Administration > Devices > Device Custom Fields
Tap the + Add custom field
Select Field Type as Text and click on continue.
You must create the following four global custom fields exactly as shown. These names are case-sensitive and required for proper functionality.
Create four separate mandatory text fields as
cybercnscompanyid
cybercnsdomain
cybercnstenantid
cybercnstoken
Example below of cybercnscompanyid being configured
Once you have filled in the Overview information navigate to the Permissions on the same Edit Custom Field view.
Select Automation as Read/write.
Select API as Read/write.
Select Technician Access as Editable.
You then will navigate to Inheritance on the same Edit Custom Field view.
Select as Device, location, organization
Then click on Submit.
After configuring all four mandatory case‑sensitive fields, the device custom fields will display as seen below.
ConnectSecure Integration Configuration
Navigate to Global > Settings > Integrations > RMM Integrations and choose NinjaOne RMM from the integrations from the tiles.
Credentials
Before we start here, NinjaOne user API Key information should be ready to be inputted here.
Enter Name: Choose a name of your choice for the credentials to be added.
Enter ClientID: Enter an API ClientID as generated from NinjaOne for a user.
Enter Client Secret: Enter API ClientSecret as generated from NinjaOne for a user.
Enter Domain: Enter the NinjaOne URL used for accessing the portal. Eg.https://us2.ninjarmm.com/
Enter Select Associated Company: Select the Associated company under user.
Once all the above is entered correctly, SAVE credentials. This will provide a green credentials saved successfully banner.
You then will be able to view the credentials added and have the option to delete from here if needed.
Company Mapping
This is where companies between NinjaOne and ConnectSecure are to be mapped; Import them directly from NinjaOne RMM or map existing ConnectSecure companies to NinjaOne RMM using the Add button.
One of these two options could be selected
Import Companies from NinjaOne RMM:- To import multiple companies listed under NinjaOne RMM to ConnectSecure at a time.
Map Existing Company to an NinjaOne RMM company:- To map an existing company in ConnectSecure to the existing company under NinjaOne RMM.
To import multiple companies from NinjaOne RMM, choose Import Companies from NinjaOne RMM, and click on Next.
In case you want to manually search the company, you can simply click on the drop-down of NinjaOne RMM Companies and it will list all companies available under NinjaOne RMM.
Once you have selected your NinjaOne RMM Companies Click Save.
To map Existing Company to a NinjaOne RMM Company, select the Companies from ConnectSecure, and Click Next.
Choose Credentials for the Map Existing Company to NinjaOne RMM company.
Choose Local Company.
Choose NinjaRMM One Company and click on Add.
Once all the fields are provided, Click on Finish to map all the selected NinjaOne RMM companies.
Using the Action column, you can Edit and Delete the integration mapping. Any mapping can be removed as and when necessary.
NinjaOne Script Deployment Overview
NinjaOne RMM Integration allows you to deploy ConnectSecure Agents in bulk via NinjaOne RMM using the prebuilt scripts provided below.
Tap here to download the NinjaOne script
The download contains a RMM Scripts folder with a script for deployment on each operating system including Windows, MAC, and Linux.
How to add automation in NinjaOne RMM
Navigate to the Administration Dashboard
Click on Library > Automation > +Automation > New Script
You can paste the script contents from the downloaded file mentioned above.
Alternately, you can choose to ‘Import a File’ and point to the scripts downloaded.+
You will see your script loaded into the command line window as shown below:
You then will be able to view your Created Script in the Automation Library as shown below
You now are ready to deploy the ConnectSecure Agent through your NinjaOne RMM.
Navigate to the Dashboard > Select your Organization
Select the device > Play icon > Automation > Script
Click on the ConnectSecure script found in your Automation Library that you have saved.
Select Run as System > Run
You can navigate to Activities > All > and view the activity of the install script.
Below you can see a failure output with the reasoning.
Here is an output of a successful install.
Permissions
You must enable the System > Vulnerability Access permissions within the NinjaOne portal in order to add/edit and manage the integration apps.
Sync Vulnerabilities
The NinjaRMM vulnerability sync runs automatically once every 24 hours, ensuring that the latest vulnerability data is updated in Ninja on a daily basis.
Additionally, if you need point in time updates, you can also trigger the sync manually from the UI as and when it is needed.
Ensure the Vulnerability Importer App Is Enabled in NinjaOne
Log in to the NinjaOne portal.
Navigate to Administrator → Apps → Installed.
Confirm that Vulnerability Importer is Enabled/Installed. If it is disabled, enable it before continuing.
Create a Scan Group in NinjaOne
A Scan Group is required for ConnectSecure to push vulnerability data into NinjaOne.
Click on the Vulnerability Importer
Select Create Scan Group.
Fill in the Scan Group Fields
Enter any unique name you want to use for this group.
Select scanning vendor > Choose Other.
Other (scanning source)
Upload a CSV (even a blank CSV with the required headers is acceptable).
Example CSV.
The column headers must match the expected values exactly as documented and shown below.
Please ensure there are no additional spaces or formatting differences in the header names and use the exact expected column names while preparing the CSV file.
Map the attributes:
Device ID → hostname
CVE ID → cve
Click Finish to create the Scan Group.
NinjaOne Vulnerability Importer - NinjaRMM Vulnerability Importer
Login to ConnectSecure
Navigate to Global → Settings → Integrations → RMM Integrations and choose NinjaOne RMM from the integrations from the tiles.
Select the three-dot Action menu found in the Company Mapping for any NinjaOne mapped company and select the Sync Vulnerabilities option.
Select the Ninja scan group from the drop-down and click Sync Vulnerabilities.
Check your NinjaOne Vulnerabilities view to see the data.
Need Support?
If you need assistance, our support team is here to help. You can create, view, and manage support tickets through our portal at any time.
Support Portal: https://connectsecure.freshdesk.com
Email: support@connectsecure.com