Begin Scanning a Confluence App (Beta)
Add your Confluence app to SaaS Security API to begin scanning and monitoring assets for possible security risks.
To connect a Confluence app to SaaS Security API and begin scanning assets, you need to:
- Retrieve the SaaS Security API public key required to create the application links.
- Configure the application links required for authentication and communication between SaaS Security API and your Confluence account.
- Add the Confluence app to SaaS Security API.
For information on which automated remediation capabilities SaaS Security API supports with Confluence, refer to Supported Applications with Remediation.
Prepare To Add Confluence App
Before you begin, verify that you have the correct permissions and follow any recommendations to ensure an efficient and successful onboarding. By default, the
administratorsgroup on Confluence provides the necessary permissions to onboard the Confluence app.
Retrieve SaaS Security API Public Key
Before you can create application links to connect your Confluence account to SaaS Security API, you must retrieve the public key from SaaS Security API for the Confluence app. You will enter this public key in the Confluence web interface when you configure the application links.
- Log in to SaaS Security.
- Select, then record theAdd a Cloud AppConfluenceClick here to prepare your Confluence AccountPublic Key.
Configure the Application Links
Before you can add the Confluence app, you must prepare your Confluence account to connect to SaaS Security API. As you do so, take note of the following values, as they are required to add Confluence app on SaaS Security API:
URL you use to log in to your Confluence cloud account. For example,
https://aperture.paloaltonetworks.com) to which you will map the Confluence URL.
Key you assign in Confluence and that’s used by SaaS Security API to authenticate and make secure API calls to Confluence.
Descriptive name you assign in Confluence for the Consumer Key.
- Log in to your Confluence cloud account with Administrator permissions (for example,https://acmecorp.atlassian.net/).
- Select.AppsManage appsApplication Links
- InConfigure Application Links, enter Application URLhttps://aperture.paloaltonetworks.com, and thenCreate new Link.
- SelectUse this URL, thenContinue.
- EnterSaaS Security APIinApplication Name, selectConfluenceinApplication Type, selectCreate incoming Linkto link Confluence URL to the SaaS Security API Application URL, thenContinue.
- Enter any value forConsumer Key,Consumer Name, andPublic Keyto enable SaaS Security API to authenticate and make secure API calls to Confluence.
- Both Consumer Key and Consumer Name must be unique. Valid values (characters and length) are defined by Atlassian, not SaaS Security API. The Confluence web interface informs you if your values do not comply with Atlassian’s convention.
- Public Key is the key you recorded in Retrieve SaaS Security API Public Key.
- EdittheApplication LinkinConnectionsto set theIncomingoption toOAuthandSaveyour setting changes.
- Next Step: Proceed to Add Confluence App.
Add Confluence App
- Log in to your Confluence cloud account (for example,https://acmecorp.atlassian.net/) with Administrator privileges.
- From theDashboard, selectAdd a Cloud App.
- Connect to Confluence Account.
- InConfluence Custom Configurationenter theConfluence URL—the URL that you use to log in to your Confluence cloud account—and theConsumer Keythat you recorded in Configure the Application Links.
- AllowSaaS Security API access to your Confluence account.Congratulations—you’ve completed the onboarding process!
- Next Step: Proceed to Identify Risks and begin scanning your assets.
When you add a new cloud app and enable scanning, SaaS Security API automatically scans the cloud app against the default data patterns and displays the match occurrences. You can take action now to improve your scan results and identify risks.
- Start scanning the new Confluence app for risks.
- During the discovery phase, SaaS Security API scans files and matches them against enabled default policy rules.Verify that your default policy rules are effective. If the results don’t capture all risks or you see false positives, proceed to the next step.
- (Optional) Configure or edit a data pattern.
Customize Confluence App
If you plan to manage more than one instance of Confluence app, consider differentiating your instances.
Fix Confluence Onboarding Issues
The most common issues related to onboarding the Confluence app are as follows:
During the course of creating application links, the Confluence web interface displays errors, requesting required Service provider, Shared secret, Request Token URL, and Access Token URL.
These errors are not required for onboarding. These errors occur when you forget to select the
Create income linkcheckbox.
Delete the application links you created and recreate them with the
Create income linkselected.
Recommended For You
Recommended videos not found.