Add GitLab to Prisma Cloud Application Security
Table of Contents
Add GitLab to Prisma Cloud Application Security
Integrating Prisma Cloud with GitLab makes it possible for Application Security to scan your Infrastructure-as-code files (Terraform and CloudFormation) and monitor configuration issues in development.
As a prerequisite you are required to add the Prisma Cloud IP addresses and hostname for Application Security to an allow list, to enable access to the Prisma Cloud Console.
It is recommended to perform the integration when logged on to GitLab with Admin user permissions.
- SelectSettings > Code & Build Providers > Add.
- SelectGitLab.
- Configure your GitLab account on Prisma Cloud Application Security and then selectNext.
- Select the repositories to scan and then selectNext.
- ANew account successfully configuredmessage appears after you have successfully set up the configurations and then selectDone.
Your configured GitLab repositories will appear underCode Repositorieson theCode & Build Providerspage. On your next GitLab scan, the scan results will include the new configured repositories. Access Monitor and Fix Issues in Your Scansto view the scanned results. - Verify that the GitLab integration is successful:
- SelectSettings>Code & Build Providers>Add>GitLab.
- Verify that yourGitLabintegration is displayed.You may have to wait for up to three minutes before the status of the integration is updated and displaysSucceeded.
Support for multiple integrations
Prisma Cloud supports multiple integrations for GitLab. After the initial integration with Prisma Cloud, you can continue to add additional organizations and workspaces using a different or a same user or team token.
Multiple integrations from a single Prisma Cloud account enables you to:
- View a list of integrations on a single console
- Add additional integrations
- Delete an existing integrationSelecting a repository for a specific integration will restrict you from selecting the same repository in another integration.
- Add additional integrations to a configured GitLab account.
- SelectSettings>Code & Build Providers>Add>GitLab(underCode Repositories).
- SelectAdd Integrationin the wizard.
TheConfigure Domainstep of the installation wizard is displayed. - Executesteps 3 - 6of the GitLab installation process above.The new integration is displayed on the landing page of the wizard. You can view your integrated GitLab repositories underCode Repositorieson theCode & Build Providerspage. The next scan of your GitLab systems will include include the new integrations with their configured repositories, and the results will be displayed in Monitor and Fix Issues in Your Scans.
Manage Integrations
Manage integrations from the integration wizard.
- Access the GitLab Self-Managed integration wizard - seestep 1of Support for multiple integrations above > select the menu underActions.
From Actions you can:
- Add or remove repositories fromReselect repositories
- Delete integrations