Aqua CSPM
  • 19 Nov 2024
  • 1 Minute to read
  • Contributors
  • Dark
    Light

Aqua CSPM

  • Dark
    Light

Article summary

Aqua CSPM (Cloud Security Posture Management) is a cloud-native security solution by Aqua Security, designed to monitor and secure cloud environments by identifying and mitigating configuration risks, compliance gaps, and threats. It provides continuous visibility into cloud infrastructure security across multiple cloud platforms, including AWS, Azure, and Google Cloud.

Integration Method: API

Tables: Compliance Finding, Scan Activity, Detection Finding

This integration has been tested against the Aqua Enterprise API v2.

Aqua CSPM Configuration

Aqua user requirements

You need an Aqua user to authenticate with the REST API before using any of the API endpoints. This user must be configured as follows:

  • Role: At least one of the user's roles includes one or more permission sets and application scopes, which meet the requirements defined below. There are no other requirements.

  • Permission set(s): Your applications will generally require either read-only and/or write access to certain types of Aqua Platform objects (e.g., images or security policies). In your permission set(s), assign View Only and/or Edit permissions, respectively, to these types of objects. Refer to Permission Sets for information on creating and configuring permission sets.

  • Application scope(s): Your applications will be able to access Aqua Platform objects within the application scope(s) associated with the user that has been authenticated. Refer to Application Scopes for information on creating and configuring application scopes.

Generate a CSPM API key and secret
  1. Login to your Aqua Security dashboard account.

  2. In Aqua Security UI, navigate to Account Management.

  1. In the Account Management page, navigate to Settings > API Keys.

  1. Click Generate Key.

  2. Copy and save the API Key and Secret values before closing the pop-up window.

DataBee Configuration

  1. Log into the DataBee console, navigate to the Data tab and click on the Add New Data Source button

  1. Search for the Aqua CSPM option using the search bar in the Add New Data Source page.

  1. Select the API Ingest option and enter appropriate details in the Configure Data source form. Click on Next button.

  1. In the configuration details dialog, enter the following:

    • Authorization Method: HMAC Auth

    • Integration Key: Paste the generated API key

    • Secret Key: Paste the generated secret key

  1. Click Submit


Was this article helpful?

What's Next
Changing your password will log you out immediately. Use the new password to log back in.
First name must have atleast 2 characters. Numbers and special characters are not allowed.
Last name must have atleast 1 characters. Numbers and special characters are not allowed.
Enter a valid email
Enter a valid password
Your profile has been successfully updated.
ESC

Eddy AI, facilitating knowledge discovery through conversational intelligence