InsightCloudSec Docs

Welcome to the InsightCloudSec Docs!

InsightCloudSec by Rapid7 (formerly DivvyCloud) is a Cloud-Native Security Platform that provides real-time analysis and automated remediation for continuous security and compliance for your multi-cloud environment.

For questions reach out to us through [email protected].

Take Me to the Docs!    Release Notes

PagerDuty Integration

Instructions for Integration Between PagerDuty & InsightCloudSec

This page provides details and an overview of the steps required to configure your InsightCloudSec installation to integrate with PagerDuty. This integration allows you to notify on-call responders through PagerDuty based on alerts within InsightCloudSec. Here's how it works:

  • An issue in one of your cloud accounts will show up as a violation within an Insight in InsightCloudSec
  • The Insight will trigger a Bot
  • The Bot will be configured to create an incident in PagerDuty

Prerequisites

Before getting started with this integration ensure you have the following:

  • A functioning InsightCloudSec platform installation with an admin role
  • PagerDuty integrations require an Admin base role for account authorization.
    • Note: If you do not have this role, please reach out to an Admin or Account Owner within your organization to configure the integration.

For general information about Integrations (editing and deleting), refer to the Integrations Overview page.

For questions or concerns reach out to [email protected].

📘

InsightCloudSec vs. DivvyCloud

Text or images may reference DivvyCloud or InsightCloudSec, note that the functionality is same regardless.

Configuring PagerDuty Integration

Steps to Complete in PagerDuty

1. From the Configuration menu, select "Services".

  • Click on "+ New Service"
  • In the new service details complete the following:
    • Name: InsightCloudSec
    • Integration Type: "Use our API Directly"
    • API Version: Events API v2
    • Integration Name: InsightCloudSec

2. Click "Add Service" to complete this step.

3. Navigate to "My Profile" and select "User Settings"

4. Click on "Create API User Token". This will create a new PagerDuty API User Token, copy and save this information for your InsightCloudSec integration.

🚧

API Key

Keep your API Key in a safe place, you will need this information when you configure the integration with InsightCloudSec in the next section. If you don't copy and save this information when it is generated you will have to delete and recreate it.

PagerDuty API KeyPagerDuty API Key

PagerDuty API Key

5. Click on the name of the service (e.g. InsightCloudSec) to open the service page. In the full path URL, copy the string after "service-directory/". This will be the service key that you will input in your InsightCloudSec configuration.

PagerDuty URLPagerDuty URL

PagerDuty URL

Steps to Complete in InsightCloudSec

1. From your InsightCloudSec platform navigate to "Administration --> Integrations" and click the "Edit" option for PagerDuty.

2. In the API Key field, insert the API Key you previously generated.

3. In the Service Key field, insert the string that you copied from the PagerDuty URL.

4. In the Email Address field, insert the email address of the user that created the PagerDuty service and select "Save".

InsightCloudSec PagerDuty IntegrationInsightCloudSec PagerDuty Integration

InsightCloudSec PagerDuty Integration

Configure the "PagerDuty Incident" Action in your Bot

1. Go to the BotFactory page and click "Create Bot".

2. Complete the "Resource Type & Groups" and "Conditions" sections.

3. In the Actions section click "Add Action" and find the PagerDuty Incident action. (You can begin typing "PagerDuty" into the text box at the top of the BotFactory Actions pane.)

Uninstalling (Removing PagerDuty Integration)

In PagerDuty

  • Log Into PagerDuty and delete the integration key that was created for InsightCloudSec.

In InsightCloudSec

  • Go to the Integrations page and select Delete (the trashcan icon) for the PagerDuty integration.

Updated 15 days ago

PagerDuty Integration


Instructions for Integration Between PagerDuty & InsightCloudSec

Suggested Edits are limited on API Reference Pages

You can only suggest edits to Markdown body content, but not to the API spec.