Censys ASM Integration Proxy Setup
Integrate data from the Censys ASM platform with the rest of your security tool chain securely and safely by running a proxy server for credential management.
With the Censys Proxy, your organization has complete control over access to your downstream security-related applications.
Integrations Supported by the Censys Proxy:
-
Jira (Jira Software Cloud or Jira Server 8)
Set Up the Proxy
To configure the proxy’s connection to your integrated apps, you need account credentials for each integration you wish to use, and the URLs of your application instances.
Provide Environment Variables
Provide the following environment variables to the Docker image via your preferred method (e.g., a .env
file or a Helm template):
-
Integration Key
Visit the Integration Proxy Configuration Page to obtain your integration key.
-
ASM Secrets
A map containing the credentials of the applications to be integrated. Learn more here.
-
Base URLs
The URLs of the applications to connect to.
Environment Variables Template
ASM_INTEGRATION_KEY=<Integration Key from Censys ASM> ASM_SECRETS=<JSON Object> ASM_BASE_URLS=<JSON Object>
Environment Variables Example
ASM_INTEGRATION_KEY=5692f45a-XXXX-XXXX-XXXX-29k177445e12 ASM_SECRETS={"JIRA_USERNAME":"example@censys.io","JIRA_API_KEY":"jira-key"} ASM_BASE_URLS={"jira":"https://example.atlassian.net"}
Pull and Run the Image
With your environment variables configured to be provided to the Docker image, deploy the proxy with the following command:
docker run --env-file .env --rm --name censys-asm-proxy gcr.io/censys-io/asm-proxy:latest
Confirm Connection on the Integrations Page
Refresh the Integrations page to confirm that the proxy can successfully reach the Censys ASM platform and that your applications are connected.
Now you’re ready to begin using your integration!
Appendix: Integration Permissions, Credentials, & URLs
Look up the permissions required for each integration to work and review the information that must be supplied to the proxy to properly connect the application to the Censys ASM platform.
Jira
In order to take securely leverage the Jira ticketing workflow in the ASM app, Censys recommends creating a dedicated Jira user with the following permissions.
Permissions
Permissions required for the Jira integration to work are marked with an asterisk (*):
-
BROWSE_PROJECTS
* — Allows Censys to display a list of projects to choose from during issue creation. -
CREATE_ISSUES
* — Allows Censys to create a Jira issue. -
VIEW_ISSUES
* — Allows Censys to display and refresh issues created through the integration. -
ASSIGN_ISSUES
– Allows assigning of issues to Jira users through the integration. -
MODIFY_REPORTERS
— Allows the issue reporter to be set through the integration.
Credentials
Authentication credentials for Jira include a username and API key and are provided to the proxy in a JSON object labeled ASM_SECRETS
.
-
JIRA_USERNAME
- An email address for the user account -
JIRA_API_KEY
- A base64-encoded string generated for programmatic access
URL
The URL of your organization’s Jira instance is provided as a key-value pair in a JSON object labeled BASE_URLS
.
Jira URLs are commonly formatted like this: yourcompany.atlassian.net
Comments
0 comments
Article is closed for comments.