Onboard a MuleSoft App to SSPM

1. Collect information for accessing your MuleSoft instance.

   To access your MuleSoft instance, SSPM requires the following information, which you will specify during the onboarding process.

   Item	Description
   User	The login email address of the MuleSoft user account that SSPM will use to access your MuleSoft instance. Required Permissions: The user must be an organization owner or organization administrator for the MuleSoft Anypoint Platform.
   Password	The password for the login account.
   Organization Domain Name	The name of the domain in the MuleSoft Anypoint Platform that is associated with your organization.

   If you're logging in through Okta, you must provide SSPM with the following additional information:

   Item	Description
   Okta subdomain	The Okta subdomain for your organization. The subdomain was included in the login URL that Okta assigned to your organization.
   Okta 2FA secret	A key that is used to generate one-time passcodes for MFA.

   If you're using Azure Active Directory (AD) as your identity provider, you must provide SSPM with the following additional information:

   Item	Description
   Azure 2FA secret	A key that is used to generate one-time passcodes for MFA.

   As you complete the following steps, make note of the values of the items described in the preceding table. You will need to enter these values during onboarding to access your MuleSoft instance from SSPM.

   1. Identify the MuleSoft user account that SSPM will use to access your MuleSoft instance.

      (Required Permissions) The user must be an organization owner or organization administrator for the MuleSoft Anypoint Platform. SSPM needs this level of access to monitor your MuleSoft instance.
   2. Get a secret key for MFA.

      The steps you follow to get the MFA secret key differs depending on the identity provider you're using to access the account.

      1. (For Okta log in) To access the account through Okta:
         1. Identify your Okta subdomain.
         2. Generate and copy an MFA secret key.
      2. (For Microsoft Azure log in) To access the account through Microsoft Azure:
         1. Enable third-party software OATH tokens for the administrator account.
         2. Configure the account for MFA and copy the MFA secret key.
   3. Make note of your organization's domain name in the MuleSoft Anypoint Platform.

      You can navigate to your organization information from the Access Management page in the MuleSoft Anypoint Platform.

      1. Log in to the MuleSoft Anypoint Platform.
      2. Click the menu icon in the top-left corner of the page and select Access Management.

      3. On the Access Management page, select Organization and then click on your organization name.
         A dialog opens, displaying information about your organization.

      4. From the Organization info dialog, locate your organization name.

      Remember your organization name. You will provide this information to SSPM during the onboarding process.
2. Connect SSPM to your MuleSoft instance.

   1. Log in to Strata Cloud Manager.
   2. Select ConfigurationSaaS SecurityPosture SecurityApplicationsAdd Application and click the MuleSoft tile.
   3. On the Posture Security tab, Add New instance.
   4. Specify how you want SSPM to connect to your MuleSoft instance. SSPM can Log in with Okta or Log in with Azure.
   5. When prompted, provide SSPM with the login credentials, your organization domain name, and the information it needs for MFA.
   6. Connect.