--- title: List entity context sync configurations description: Datadog, the leading service for cloud-scale monitoring. breadcrumbs: Docs > API Reference > Security Monitoring --- # List entity context sync configurations{% #list-entity-context-sync-configurations %} Copy pageCopied {% tab title="v2" %} **Note**: This endpoint is in preview and is subject to change. If you have any feedback, contact [Datadog support](https://docs.datadoghq.com/help/). | Datadog site | API endpoint | | ----------------- | --------------------------------------------------------------------------------------------- | | ap1.datadoghq.com | GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/integration_config | | ap2.datadoghq.com | GET https://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/integration_config | | app.datadoghq.eu | GET https://api.datadoghq.eu/api/v2/security_monitoring/configuration/integration_config | | app.ddog-gov.com | GET https://api.ddog-gov.com/api/v2/security_monitoring/configuration/integration_config | | us2.ddog-gov.com | GET https://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/integration_config | | app.datadoghq.com | GET https://api.datadoghq.com/api/v2/security_monitoring/configuration/integration_config | | us3.datadoghq.com | GET https://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/integration_config | | us5.datadoghq.com | GET https://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/integration_config | ### Overview List the entity context sync configurations for Cloud SIEM. Each configuration connects Cloud SIEM to an external source that provides entities (for example, users from an identity provider) for use in signals and the entity explorer. This endpoint requires the `integrations_read` permission. OAuth apps require the `integrations_read` authorization [scope](https://docs.datadoghq.com/api/latest/scopes.md#security-monitoring) to access this endpoint. ### Arguments #### Query Strings | Name | Type | Description | | ------------------------ | ---- | --------------------------------------------------------------------------------------------------------------------- | | filter[integration_type] | enum | Filter the entity context sync configurations by source type. Allowed enum values: `GOOGLE_WORKSPACE, OKTA, ENTRA_ID` | ### Response {% tab title="200" %} OK {% tab title="Model" %} Response containing a list of entity context sync configurations. | Parent field | Field | Type | Description | | ------------ | ---------------------------------- | --------- | ----------------------------------------------------------------------------------------------------------------------- | | | data [*required*] | [object] | The list of integration configurations. | | data | attributes [*required*] | object | The attributes of an entity context sync configuration as returned by the API. | | attributes | created_at | date-time | The time at which the entity context sync configuration was created. | | attributes | domain [*required*] | string | The domain associated with the external entity source (for example, the customer's identity provider domain). | | attributes | enabled [*required*] | boolean | Whether the sync is enabled and actively ingesting entities into Cloud SIEM. | | attributes | integration_type [*required*] | enum | The type of external source that provides entities to Cloud SIEM. Allowed enum values: `GOOGLE_WORKSPACE,OKTA,ENTRA_ID` | | attributes | modified_at | date-time | The time at which the entity context sync configuration was last modified. | | attributes | name | string | The display name of the entity context sync configuration. | | attributes | settings | object | Free-form, non-sensitive settings for the entity context sync. The accepted keys depend on the source type. | | attributes | state | enum | The state of the credentials configured on the entity context sync. Allowed enum values: `valid,invalid,initializing` | | data | id [*required*] | string | The unique identifier of the integration configuration. | | data | type [*required*] | enum | The type of the resource. The value should always be `integration_config`. Allowed enum values: `integration_config` | {% /tab %} {% tab title="Example" %} ```json { "data": [ { "attributes": { "created_at": "2026-05-01T12:00:00Z", "domain": "siem-test.com", "enabled": true, "integration_type": "GOOGLE_WORKSPACE", "modified_at": "2026-05-01T12:00:00Z", "name": "My GWS Integration", "settings": { "setting1": "value1" }, "state": "valid" }, "id": "11111111-2222-3333-4444-555555555555", "type": "integration_config" } ] } ``` {% /tab %} {% /tab %} {% tab title="403" %} Not Authorized {% tab title="Model" %} API error response. | Field | Type | Description | | ------------------------ | -------- | ----------------- | | errors [*required*] | [string] | A list of errors. | {% /tab %} {% tab title="Example" %} ```json { "errors": [ "Bad Request" ] } ``` {% /tab %} {% /tab %} {% tab title="429" %} Too many requests {% tab title="Model" %} API error response. | Field | Type | Description | | ------------------------ | -------- | ----------------- | | errors [*required*] | [string] | A list of errors. | {% /tab %} {% tab title="Example" %} ```json { "errors": [ "Bad Request" ] } ``` {% /tab %} {% /tab %} ### Code Example ##### \# Curl command curl -X GET "https://api.datadoghq.com/api/v2/security_monitoring/configuration/integration_config" \ -H "Accept: application/json" \ -H "DD-API-KEY: ${DD_API_KEY}" \ -H "DD-APPLICATION-KEY: ${DD_APP_KEY}" {% /tab %}