# Have I Been Pwned?

This integration allows you to scan your tenant for compromised credentials, breaches, and dark web scanning through leveraging the Have I Been Pwned database.

## Setting Up the Integration

{% stepper %}
{% step %}

### Obtain an API key from HIBP

{% hint style="info" %}
CyberDrain hosted sponsors have access to a complimentary key through a partnership with HIBP. You can skip to step 3.
{% endhint %}

Purchase or retrieve your [API key from HIBP](https://haveibeenpwned.com/API/Key).
{% endstep %}

{% step %}

### Enter your HIBP key

Paste your HIBP key into the available box
{% endstep %}

{% step %}

### Toggle on the integration

Ensure that the "Enable Integration - Allow darkweb scanning through tools and alerts" toggle is flipped to on (represented with the toggle now showing orange)
{% endstep %}

{% step %}

### Save integration settings

Click the Submit button
{% endstep %}

{% step %}

### Test integration

Click the test button. If there are any failures, information regarding the failure will be displayed.
{% endstep %}
{% endstepper %}

## Clearing the API Key

CIPP includes a `Clear API Key` button if you need to remove the key you previously entered. This is helpful for those migrating from self-hosted to CyberDrain hosted wanting to leverage the complimentary key.

***

## Feature Requests / Ideas

We value your feedback and ideas. Please raise any [feature requests](https://github.com/KelvinTegelaar/CIPP/issues/new?assignees=\&labels=enhancement%2Cno-priority\&projects=\&template=feature.yml\&title=%5BFeature+Request%5D%3A+) on GitHub.