Add GitLab Self-Managed to Prisma Cloud Code Security

Integrating Prisma Cloud with GitLab Self-Managed makes it possible for Cloud Code Security to scan your Infrastructure-as-code files (Terraform and CloudFormation) and monitor configuration issues in development.
To ensure network reachability between your GitLab environment and Prisma Cloud Code Security, as a prerequisite you are required to add the Prisma Cloud IP addresses and hostname for Code Security to an allow list, to enable access to the Prisma Cloud Console.
  1. Access GitLab Self-managed on Prisma Cloud Code Security.
    1. Select
      Settings > Repositories > Add Repository
    2. Select
      GitLab Self-managed
      .
    3. Enter your GitLab Self-Managed domain to configure the domain on Prisma Cloud Code Security and then select
      Register
      .
      You will be redirected to a new page to register a new OAUTH app on GitLab Self-managed.
  2. Register GitLab Self-managed domain.
    1. Copy
      Application Name
      and
      Redirect URI
      from
      Register OAUTH app
      .
    2. Access the
      GitLab Self-Managed>User Settings> Applications
      and paste the copied values of Application Name as
      Name
      and Redirect URI as
      Redirect URI
      .
    3. Select
      api
      , and
      Save application
      .
    4. Copy
      Application ID
      and
      Secret values
      .
  3. Authorize Prisma Cloud Code Security to GitLab Self-managed.
    1. Access
      Set Client ID and Secret
      and paste the copied values of
      Application ID
      and
      Secret
      and then select
      Authorize
      .
  4. Select repositories to scan.
    1. Select the repositories to scan and then select
      Next
      .
    2. A
      New account successfully configured
      message appears after you have successfully set up the configurations and then select
      Done
      .
      Your configured GitLab Self-managed repositories will appear on the
      Repositories
      page. On your next GitLab Self-managed scan, the scan results will include the new configured repositories. Access
      Code Security
      to view the scanned results.

Recommended For You