Integrate Prisma Cloud with PagerDuty

Create a new service in PagerDuty and get the integration key.

Log in to PagerDuty.
Click
Services
Service Directory
and create a
+ New Service
.

Complete the
Create a Service
form.
Enter a
Name
,
Description
, and click
Next
.

Generate a new escalation policy or select an existing policy to the service and click
Next
.

Set the Alert Grouping options as you need and click
Next
.

Select the
Events API V2
integration.

Click
Create Service
.
After creating a new service, you will be directed to its
Integrations
page.
Copy and save the
Integration Key
.
You will need to enter this integration key while setting up PagerDuty integration on Prisma Cloud.

For more information about integrations with PagerDuty, see PagerDuty Documentation.

Set up PagerDuty as an integration channel on Prisma Cloud.

Log in to Prisma Cloud and select

Settings

Integrations

.

Click

Add Integration

.

Set the

Integration

to

Pager Duty

.

Enter the

Integration Name

and

Description

.

Enter the

Integration Key

that you had saved while creating your PagerDuty service.



Click

Next

and then

Test

.



Save

the integration.

Prisma Cloud creates a test incident and sends it to your service in PagerDuty. To ensure that integration is successful, look for the test integration in your PagerDuty Service.



Modify an existing alert rule or create a new alert rule to send alert notifications to PagerDuty. (See Send Prisma Cloud Alert Notifications to Third-Party Tools.)

View Prisma Cloud in PagerDuty.

In PagerDuty, all the open alerts display the Incident State as

Triggered

and all the resolved alerts display the Incident State as

Resolved

.