Skip to content

Integrations Overview

The SettingsIntegrations tab allows you to integrate with different systems to get scheduled reports and instant notifications through them:

  • Scheduled reports can be sent on a daily, weekly, or monthly basis. Reports include detailed information about vulnerabilities, attacks, and incidents detected in your system over the selected period.

  • Notifications are sent when vulnerabilities, hits, scope changes, or system related events are detected in your system. Notifications include brief details of detected activity.

Administrator access

The integration setup is available only for users with the Administrator role.

Integration types

The systems available for integration are grouped by types as follows:

Integrations Overview

Email and messengers

Incident and task management systems

SIEM and SOAR systems

Log management systems

Data collectors

Other systems

Adding an integration

To add a new integration:

  • Click the icon of the unconfigured system on the All tab, or

  • Click the Add integration button in the required system group and select the system. Further steps are described in the selected system instructions.

The number of integrations with one system is not limited. For example: to send security reports to 3 Slack channels, you can create 3 different integrations with Slack.

Wallarm Cloud IP addresses

To provide Wallarm Cloud access to your system, you may need a list of its public IP addresses. To get these addresses, request them from the Wallarm technical support team.

Note that the public IP addresses of Wallarm Cloud can change from time to time. If your experience some problems with the addresses that you currently use, request up-to-date addresses from the Wallarm technical support team.

Filtering integrations

To filter displayed integrations, you can use the tabs:

  • All with enabled, disabled, and not yet configured integrations

  • Enabled with active configured integrations

  • Disabled with disabled configured integrations

Filtering Integrations

Advanced notifications setup

For advanced notification setup, you can use triggers.

Unavailability of integrated systems and incorrect integration parameters

Notifications to the system are sent via requests. If the system is unavailable or integration parameters are configured incorrectly, the error code is returned in the response to the request.

If the system responds to Wallarm request with any code other than 2xx, Wallarm resends the request with the interval until the 2xx code is received:

  • The first cycle intervals: 1, 3, 5, 10, 10 seconds

  • The second cycle intervals: 0, 1, 3, 5, 30 seconds

  • The third cycle intervals: 1, 1, 3, 5, 10, 30 minutes

If the percentage of unsuccessful requests reaches 60% in 12 hours, the integration is automatically disabled. If you receive system notifications, messages about automatically disabled integration will be sent to the configured system.

You can identify incorrectness of integration parameters by testing the integration. The appropriate button is available in the integration setup window. If the test request failed, Wallarm Console would display the appropriate message.

Demo videos