Integrate Prisma Cloud with PagerDuty
Learn how to integrate Prisma™ Cloud with PagerDuty to see alerts in your service or application.
Integrate Prisma™ Cloud with PagerDuty to aid alerting, on-call scheduling, escalation policies, and incident tracking to increase uptime of your apps, servers, websites, and databases. When integrated, Prisma Cloud sends alerts to the PagerDuty service, notifying your incident response teams to investigate and remediate security incidents.
- Create a new service in PagerDuty and get the integration key.
- Log in to PagerDuty.
- Click and create a+ New Service.
- Complete theCreate a Serviceform.
- Enter aName,Description, and clickNext.
- Generate a new escalation policy or select an existing policy to the service and clickNext.
- Set the Alert Grouping options as you need and clickNext.
- Select theEvents API V2integration.
- ClickCreate Service.
- After creating a new service, you will be directed to itsIntegrationspage.
- Copy and save theIntegration Key.You will need to enter this integration key while setting up PagerDuty integration on Prisma Cloud.
For more information about integrations with PagerDuty, see PagerDuty Documentation.
- Set up PagerDuty as an integration channel on Prisma Cloud.
- Log in to Prisma Cloud and select .
- ClickAdd Integration.
- Set theIntegrationtoPager Duty.
- Enter theIntegration NameandDescription.
- Enter theIntegration Keythat you had saved while creating your PagerDuty service.
- ClickNextand thenTest.
- Savethe integration.Prisma Cloud creates a test incident and sends it to your service in PagerDuty. To ensure that integration is successful, look for the test integration in your PagerDuty Service.
- Modify an existing alert rule or create a new alert rule to send alert notifications to PagerDuty. (See Send Prisma Cloud Alert Notifications to Third-Party Tools.)
- View Prisma Cloud in PagerDuty.In PagerDuty, all the open alerts display the Incident State asTriggeredand all the resolved alerts display the Incident State asResolved.
