PagerDuty Integration

This page provides details and an overview of the steps required to configure your InsightCloudSec installation to integrate with PagerDuty. This integration allows you to notify on-call responders through PagerDuty based on alerts within InsightCloudSec. Here's how it works:

  • An issue in one of your cloud accounts will show up as a violation within an Insight in InsightCloudSec
  • The Insight will trigger a Bot
  • The Bot will be configured to create an incident in PagerDuty

Prerequisites

Before getting started with this integration ensure you have the following:

  • A functioning InsightCloudSec platform installation with an admin role
  • PagerDuty integrations require an Admin base role for account authorization.
    • If you do not have this role, please reach out to an Admin or Account Owner within your organization to configure the integration.

For general information about Integrations (editing and deleting), refer to the Integrations Overview page.

For questions or concerns reach out to us through the Customer Support Portal.

Product name to be replaced

You may observe that some components, screen captures, or examples use our former product name, DivvyCloud. This doesn't affect the configuration or the product's functionality, and we will notify you as we replace these component names.

Configuring PagerDuty Integration

Steps to Complete in PagerDuty

  1. From the Configuration menu, select Services.
    • Click on + New Service
    • In the new service details complete the following:
      • Name: InsightCloudSec
      • Integration Type: Use our API Directly
      • API Version: Events API v2
      • Integration Name: InsightCloudSec
  2. Click Add Service to complete this step.
  3. Navigate to My Profile and select User Settings
  4. Click Create API User Token. This will create a new PagerDuty API User Token, copy and save this information for your InsightCloudSec integration.

API Key

Keep your API Key in a safe place, you will need this information when you configure the integration with InsightCloudSec in the next section. If you don't copy and save this information when it is generated you will have to delete and recreate it.

  1. Click on the name of the service (e.g. InsightCloudSec) to open the service page. In the full path URL, copy the string after service-directory/. This will be the service key that you will input in your InsightCloudSec configuration.

Steps to Complete in InsightCloudSec

  1. From your InsightCloudSec platform navigate to Administration > Integrations and click the Edit option for PagerDuty.
  2. In the API Key field, insert the API Key you previously generated.
  3. In the Service Key field, insert the string that you copied from the PagerDuty URL.
  4. In the Email Address field, insert the email address of the user that created the PagerDuty service and select "Save".

Configure the PagerDuty Action in your Bot

  1. Go to the BotFactory page and click Create Bot.
  2. Complete the Resource Type & Groups and Conditions sections.
  3. In the Actions section, click Add Action and find the PagerDuty Incident action. You can begin typing "PagerDuty" into the text box at the top of the BotFactory Actions pane.

Uninstalling (Removing PagerDuty Integration)

In PagerDuty

  1. Log Into PagerDuty and delete the integration key that was created for InsightCloudSec.

In InsightCloudSec

  1. Go to the Integrations page and select Delete (the trashcan icon) for the PagerDuty integration.