Add CircleCI CI/CD Systems to Prisma Application Application Security
Table of Contents
Add CircleCI CI/CD Systems to Prisma Application Application Security
Integrate CircleCI CI/CD systems (CircleCI) with Prisma Cloud to gain visibility into and monitor CircleCI and all systems, technologies and processes in your environment connected to CircleCI. This integration allows Prisma Cloud to scan your CircleCI environment and provide the results of the scan, allowing you to understand and fix issues as soon as they are detected.
- Fullfil the following requirements before integrating CircleCI with Prisma Cloud.
- Allow access to Prisma Cloud:add Prisma Cloud IP addresses and hostnames for Application Security to an allow list
- Permissions: To grant Prisma Cloud visibility for all CircleCI projects, a version control system (VCS) user must be authorized to grant access. This is because the CircleCI user base is integrated with the (VCS), and inherits permissions granted to VCS users.
- Create a dedicated VCS user to integrate CircleCI with Prisma Cloud, to prevent the integration breaking if the user leaves the organization.
- Verify that the dedicated user follows all the organization’s projects in CircleCI
- Create a personal API token (seestep 2below). The main reason that Prisma Cloud requires personal API tokens is to allow reading the configurations from CircleCI for all the projects that a user tracks
- Generate a personal API token in CircleCI.
- Login to your CircleCI instance with VCS user credentials.CircleCI utilizes the VCS user visibility. For example, if a GitHub user has access to specific organizations and repositories, these entities are visible and available in CircleCI.
- In Prisma Cloud.
- SelectSettings>Code & Build Providers>Add>CircleCI(under CI/CD Systems).The CircleCI integration wizard is displayed.
- SelectAdd Integrationfrom the CircleCI integration wizard.
- Fill in the following details in the provided fields of the wizard.
- Integration Name: an alias allowing you to identify the integration
- Personal API Token: the personal API token generated in step 2 above
- SelectCreate.The Prisma Cloud Application Security module is integrated with your CircleCI system.
- Verify that the CircleCI integration is successful:
- SelectSettings>Code & Build Providers> select theCI/CD Systemstab.
- Verify that the status of theCircleCIintegration underStatusdisplaysSucceeded.You may have to wait for up to three minutes before the status of the integration is updated and displaysSucceeded.
Support for multiple integrations
Prisma Cloud supports multiple integrations for CircleCI instances.
Multiple integrations from a single Prisma Cloud account enables you to:
- View a list of integrations on a single console
- Delete an existing integration
- Add additional CircleCI integrations.
- SelectSettings>Code & Build Providers>Add>CircleCI(under CI/CD Systems).
- SelectAdd integrationin the wizard.
- RepeatSteps 1-3of the integration process above.The new integration is displayed on the landing page of the CircleCI integrations wizard. You can view your integrations underCI/CD Systemson theCode & Build Providerspage. The next scan of your CircleCI systems will include the new integrations, and the results will be displayed in Repositories.
Manage Integrations
Manage integrations from the integration wizard.
- Access the CircleCi integration wizard - seestep 1of Support for multiple integrations above > select the menu underActions.From Actions you can:
- Remove integrations
- Edit integrations