: Add GitLab Self-Managed to Prisma Cloud Application Security
Focus
Focus

Add GitLab Self-Managed to Prisma Cloud Application Security

Table of Contents

Add GitLab Self-Managed to Prisma Cloud Application Security

Integrating Prisma Cloud with GitLab Self-Managed makes it possible for Cloud Application Security to scan your Infrastructure-as-code files (Terraform and CloudFormation) and monitor configuration issues in development.
To ensure network reachability between your GitLab environment and Prisma Cloud Application Security, as a prerequisite you are required to add the Prisma Cloud IP addresses and hostname for Application Security to an allow list, to enable access to the Prisma Cloud Console.
The hostname or IP address you provide must also be resolvable on the public DNS.
It is recommended to perform the integration when logged on to GitLab Self-managed with Admin user permissions.
  1. Access GitLab Self-managed on Prisma Cloud Application Security.
    1. Select
      Settings
      >
      Code & Build Providers
      >
      Add
    2. Select
      GitLab Self-managed
      .
    3. Enter your GitLab Self-Managed domain to configure the domain on Prisma Cloud Application Security and then select
      Register
      .
      You will be redirected to a new page to register a new OAUTH app on GitLab Self-managed.
  2. Register GitLab Self-managed domain.
    1. Copy
      Application Name
      and
      Redirect URI
      from
      Register OAUTH app
      .
    2. Access the
      GitLab Self-Managed > User Settings > Applications
      and paste the copied values of Application Name as
      Name
      and Redirect URI as
      Redirect URI
      .
    3. Select
      api
      , and
      Save application
      .
    4. Copy
      Application ID
      and
      Secret values
      .
  3. Authorize Prisma Cloud Application Security to GitLab Self-managed.
    1. Access
      Set Client ID and Secret
      and paste the copied values of
      Application ID
      and
      Secret
      and then select
      Authorize
      .
  4. Select repositories to scan.
    1. Select the repositories to scan and then select
      Next
      .
    2. A
      New account successfully configured
      message appears after you have successfully set up the configurations and then select
      Done
      .
      Your configured GitLab Self-Managed repositories will appear on the
      Code & Build Providers
      page. On your next GitLab Self-managed scan, the scan results will include the new configured repositories. Access Monitor and Fix Issues in Your Scans to view the scanned results.
  5. Verify that the GitLab Self-managed integration is successful:
    1. Select
      Settings
      >
      Code & Build Providers
      >
      Add
      >
      GitLab Self-managed
      .
    2. Verify that your
      GitLab Self-managed
      integration is displayed.
      You may have to wait for up to three minutes before the status of the integration is updated and displays
      Succeeded
      .

Support for multiple integrations

Prisma Cloud supports multiple integrations for GitLab Self-Managed. After the initial integration with Prisma Cloud, you can continue to add additional organizations and workspaces using a different or a same user or team token.
Multiple integrations from a single Prisma Cloud account enables you to:
  • View a list of integrations on a single console
  • Add additional integrations.
  • Delete an existing integration
    Selecting a repository for a specific integration will restrict you from selecting the same repository in another integration.
  1. Add additional integrations to a configured GitLab Self-Managed account.
    1. Select
      Settings
      >
      Code & Build Providers
      >
      Add
      >
      GitLab Self-Managed
      (under
      Code Repositories
      ).
    2. Select
      Add Integration
      in the wizard.
      The
      Configure Domain
      step of the installation wizard is displayed.
    3. Configure your Domain as stated in step
      1
      of the GitLab Self-Managed installation process above and then proceed to execute steps
      2-5
      of the installation procedure.
      The new integration is displayed on the landing page of the wizard. You can view your configured GitLab Self-managed repositories under
      Code Repositories
      on the
      Code & Build Providers
      page. The next scan of your GitLab Self-Managed systems will include the new integrations with their configured repositories, and the results will be displayed in Monitor and Fix Issues in Your Scans.

Manage Integrations

Manage integrations from the integration wizard.
  1. Access the GitLab Self-Managed integration wizard - see
    step 1
    of Support for multiple integrations above > select the menu under
    Actions
    .
    From Actions you can:
    • Add or remove repositories from
      Reselect repositories
    • Delete integrations

Recommended For You