Zendesk Integration with Grip Security - Posture (SSPM)

Overview

This guide explains how to connect Zendesk with Grip Security. Integrating with Grip’s SSPM module enables Grip to assess critical security settings, including access control, configuration baseline, and other relevant aspects within your Zendesk environment.

To connect to Grip, you will need to add an OAuth client in Zendesk and provide its Client ID, Client Secret, and Sub Domain.

Note

Zendesk offers two types of OAuth apps: helpdesk/support apps and CRM apps. Currently, Grip only supports OAuth for helpdesk apps. If you need support for CRM apps, please contact us.

Prerequisites

Admin user in the Zendesk account.

Create an OAuth client

From your admin dashboard, navigate to Settings (1) > Apps and Integrations (2).

• From the side menu, select OAuth client (3) and click on the Add OAuth client (4).

On the Add OAuth Client page, enter the client details and copy the necessary information- Client ID, Client Secret, and Subdomain for integration with Grip.

Copy the heading (5) to your clipboard; this is the client subdomain you will need later when connecting to Grip.

Enter the required details (6), Name, Description, and Company.

• Give the client an Identifier (7), then copy it to your clipboard; you will need it later when connecting to Grip.

• Client kind (8) – select Confidential

• In the Redirect URl field (9), enter your Grip domain name after the “https://”    
  https://{client_domain_in_grip}.integrations.grip.security/oauth/callback    

  • For example, in this URL, https://acme.dep.grip.security/, the {client_domain_in_grip} will be, acme

• Save the page (9) to get the client secret.

• Copy the Secret (10) to your clipboard; you will need it when connecting to Grip.

Connect Zendesk to Grip SSPM

• From Grip platform, go to Posture >> Click on Add Tenant (1) >> Zendesk (2)

• In the Add New Zendesk Tenant window (3), enter Zendesk’s tenant Display name,  and the Client ID, Client Secret, and Subdomain you copied in the previous section.

• Click on Continue

• The Connect Zendesk window (4) indicates that to complete the integration, you need to sign in to Zendesk using two-step (5) verification or send a URL to the Zendesk admin.  

  • Once the admin approves it, the tenant will be connected.    

  • Note that the link expires after 1 hour.  

  • If you have the admin passcode (received by mail), click Connect.

Once connected, the Tenant will be added to the “Connected Tenants” list. There, you can view and filter your policy statuses, assess your security posture, and address any issues.