Integrations¶
The Admin > Integrations category provides access to the configuration views for the various third-party integrations that can be enabled in Plixer Scrutinizer.
Click on an integration type below to learn more:
Enable/disable and configure third-party integrations for Explore > Exporters view |
|
Add/edit ASA firewall credentials for ACL description retrieval |
|
Configure SMTP server settings for email notifications and reports |
|
Configure and manage Azure, AWS, OCI, or GCP flow log ingestion sources |
|
Add and manage STIX-TAXII threat intelligence feeds |
|
Configure and manage ServiceNow instances for incident/ticket generation via notifications and collections |
|
Enable/disable and configure Viptela integration for Cisco vManage devices |
Flow log ingestion¶
Plixer Scrutinizer can be configured to ingest flow logs from cloud data sources, enabling seamless visibility between on-prem and cloud-based assets.
Data sources are added from the Admin > Integrations > Flow Log Ingestion page as follows:
Click the + button to open the configuration tray for a new data source:
Select the service/type of data source to be added.
Enter the required details in the secondary tray.
[Optional] Click Test to verify that Plixer Scrutinizer can access the data source.
Click Save to save the data source configuration.
Once flows originating from a cloud data source are being ingested, any exporters reported–either as part of flow contents or in attached metadata–will be added to Plixer Scrutinizer. These devices can then be used similarly to regular exporters in Plixer Scrutinizer’s functions (e.g., reports, network maps, Security Groups, etc.).
Hint
To delete one or more data source configurations, select them using the checkboxes and use the Delete Integrations option in the Bulk Actions tray.
For further information and additional set-up steps for specific cloud providers, see the corresponding sections below: