Add API Capabilities for External Access to PingCastle Data

Products PingCastle Ideas
, , ,
1

What is a one sentence summary of your feature request?

Introduce an API that allows external tools and systems to securely access PingCastle reports and data for integration and automation purposes.

Please describe your idea in detail. What is your problem, why do you feel this idea is the best solution, etc.

Currently, PingCastle operates as a standalone tool with no direct way to integrate its data into other platforms or workflows. This limits organizations that want to:

Automate reporting and compliance checks.
Feed PingCastle results into SIEM, GRC, or vulnerability management systems.
Build dashboards for continuous monitoring.

Adding API capabilities would enable:

Secure, authenticated access to PingCastle data (reports, domain health scores, risk indicators).
Integration with third-party tools for centralized security management.
Automation of repetitive tasks like report retrieval and license checks.

This solution is ideal because it aligns with modern security operations practices, where interoperability and automation are critical for efficiency and scalability.

How do you currently solve the challenges you have by not having this feature?

Currently, administrators manually export reports from PingCastle and then upload or parse them into other systems. This process is time-consuming, error-prone, and does not support real-time data synchronization.

2

Philipp,
We already have a fully functional API and details can be accessed from /swagger.

You will use an Agent (Configuration → Agent) with the Read All PingCastle Enterprise Data permission and then you login with the Agent in the /Agent/Login endpoint to get your login token and then you can use the APIs as required.

A couple of key endpoints
/Reports/OnlyLastReports will get you the latest reports overviews. Maturity Levels, Scores etc.
/Reports/{Id}/Detail will get you detailed report information in json format. You can then access risk details and anything you need from the report in there.
/Domains - will get you your AD domain details with ID and Names to resolve from other endpoints.
/Events - The list of events from Infrastructure → Events

Is this what you are after? If you need some help getting something up and running I can help you get the information you need.

Here is some PowerShell I have from some time back that should make this simpler for you
PingCastleAPI.ps1 (11.2 KB)

Example Usage

image
image1133×646 26.7 KB

Hope this helps!

1 Like