Palo Alto Prisma Cloud
Configure Radiant Security to pull Pull Palo Alto Prisma Cloud alerts.
In this guide, you'll create API credentials in Prisma Cloud to enable Radiant to collect alerts
At the end of this configuration, you will provide Radiant Security with these values:
API URL
Access Key ID
Secret Access Key
Prisma ID (optional)
Prerequisites
Generate API Credentials
Important note: If you do not see the option to add a new key, it means that you do not have the permissions to create access keys. Make sure that you are logged as an admin.
On the Prisma Cloud Console, select Settings > Access Control > Access Keys and select Add > Access Key.
Enter a Name for the key (e.g.
Radiant Security Integration).Select Enable Expiration to set the key expiry term. Specify a term (date and time for the key validity) that adheres to your corporate compliance standards. If you do not select key expiry, the key is set to never expire. We recommend a one-year term.
Click Save.
Get your API URL and PrismaID
API URL
Your console URL changes according to your region. Please take note of your region and copy the corresponding API URL from Prisma Cloud’s Website.
Important Note: Copy the Prisma Cloud API URL (not the Prisma Cloud Admin Console URL).
PrismaID (optional)
From the console, Select Settings > License Information or Account Settings.
On the License page, look for the value PrismaID and copy it.
Add the credentials in Radiant Security
Log in to Radiant Security.
From the navigation menu, select Settings > Data Connectors and click + Add Credential.
Select the Palo Alto Prisma Cloud from the list and click Credentials.
For Credential Name, give the credential an identifiable name (like
Prisma Cloud API).Under Required Credentials, fill the fields with the values your copied from the previous sections.
Click Add Connector to save the changes.
Last updated