This guide explains how to connect Tailscale to WatchDog Security using an API token.Once connected, WatchDog will begin monitoring your Tailscale environment for security posture risks, configuration issues, and device inventory information across your tailnet.
What WatchDog Monitors#
WatchDog operates in read-only mode and does not modify configuration settings within your Tailscale environment.
Tailnet Security SettingsTailnet security configuration
Access policies and security posture settings
Tailnet configuration details
Devices connected to the tailnet
Device metadata and device status
Device ownership and device connectivity details
Requirements#
Before connecting the integration, ensure the following:You have administrator access to the Tailscale admin console
You're an Account Owner or Security Admin in the WatchDog Security portal
Step 1 — Generate a Tailscale API Token#
You can generate a trusted credential directly from the Tailscale Admin Console.1.
Log into the Tailscale Admin Console
2.
Navigate to: Settings → Trusted Credentials
4.
Under New Credential, select:
5.
Enter a description for the credential (for example: WatchDog Security)
7.
Under Scopes, select: All — Read
8.
Click Generate Credentials
9.
Copy the generated Client Secret / API Token
Tailscale credentials are shown only once after creation. Store the credential securely before continuing.
Step 2 — Connect the Integration in WatchDog#
1.
Log into the WatchDog Security Portal
2.
Navigate to Management → Integrations
5.
Paste the generated API Token
6.
Click Connect Integration
Initial Sync#
WatchDog will begin collecting data from Tailscale
The first synchronization typically completes within 5–10 minutes
Troubleshooting#
Verify the following:
The API token was copied correctly
The token was generated with All — Read permissions
The token has not been revoked or expired
