Atlassian Integration with Grip Security - Posture (SSPM)

Overview

The Atlassian integration with Grip’s SSPM module allows Grip to provide configuration insights around Access controls, Role Management, Corporate Information, and more.

This article covers the required permissions and flow to add an  Atlassian tenant to Grip's SSPM module.

Adding Atlassian to Grip consists of two steps:

• Getting the required information:

  • Atlassian - API key and Organization ID.

  • Confluence - API Token and Domain.

• Adding the Atlassian tenant to Grip using the info from Atlassian and Confluence

Prerequisites

Atlassian Organization Admin permission (see image below), which allows you to create an Organization API Key.

Getting the required information from Atlassian and Confluence.

Get Atlassian API key and Organization ID

From the Atlassian admin panel, go to Administration (1)

Navigate to Organization settings,» API keys and click on Create API key (3)

• Select the “API key without scopes” (4)

• Name the API key and choose the “Expiration date” (5).

• We suggest setting the expiration date to one year from now, then clicking “Next.”

• Select the API key name (6) and click on “Create API key” (7).

• Copy and save the “Organization ID” (8) and the “API key” (9) as you will need them during the integration.

• Click “Add.”

• Click “Done.”

Get a User API Token

• From the Atlassian Account admin panel, click on “Create API token”

• Name the API token and choose the “Expiration date” (1).

• We suggest setting the expiration date to one year from now, then clicking “Create.”

• Copy the generated API token (2) and click “Done”.

Get Confluence Domain

Copy the domain name that appears after the https:// in your Confluence domain.

For example, in the domain https://gripexp.atlassian.net/, the domain name is gripexp (not including the atlassian.net)

Connecting Atlassian to Grip SaaS Security Posture Management.

• From the Grip portal, search or navigate to Integrations » Posture Management (1) Atlassian » Connect (2)

In the Add New App Tenant window (3)

• Enter a “Display Name.”

• Paste the data copied from the previous steps

  • Atlassian -  Organization API key, Organization ID

  • User email -The Atlassian Admin domain

  • Confluence – User API Token, Confluence Domain

• Click on “Add Tenant.”

• You will be redirected to the Posture Checks tab (4) filtered on the selected tenant policies.

• The status will initially be 'Retrieving' until synchronization is complete, after which it will begin displaying the Fail/Pass/ review status.

• Once connected, the Connected tag will appear on the tile, along with details of what is affected by this connection, such as posture and ITDR