This the multi-page printable view of this section. Click here to print.

Return to the regular view of this page.

  • 1:

    Integrations for Sysdig Secure

    “Integrations” for Sysdig Secure include a wide range of tools and software designed to connect Secure functionality (e.g., image scanning, event handling, audit logging, and risk analysis) with other systems. Some such tools are installed with the backend. Others are not, because they exist to accommodate specific use cases, infrastructure details, or additional customizations.

    Levels of Support

    These added tools are called “extensions” and It is up to the user to decide which extensions to install on top of the core backend functionality.

    There are two different categories of extensions depending on the support level and backward- compatibility guarantees:

    • Preview features - These are pre-release features for which Sysdig is seeking early feedback from users. If you’re interested in trying these items, we will connect you directly with our product/engineering teams. Depending on the level of engagement with a preview Sysdig will decide to deprecate it or move it into an officially supported extension or feature.   

    • Fully supported) Extension features - These extensions are installed outside the core Sysdig product and leverage Sysdig APIs, but they are fully supported at the same level as any other core product feature.

    Features that are delivered with the core product are designated as “built-in” and always receive full support.

    Sysdig delivers many other code examples and integrations as blog content, webinars, whitepapers, etc. Any code snippet or integration that is not explicitly listed in the tables above is not officially supported and is merely illustrative of a particular feature or capability.

    Types of Secure Integrations

    Image scanning functionality can be integrated into the CI/CD pipeline and with container registries. Kubernetes logs can be integrated from a variety of platforms and distributions. Events can be forwarded to various external processing systems.

    Fully supported Extensions are marked with E. Preview features are marked with P.

    CI/CD PipelineContainer RegistriesAudit Logging (Kubernetes)Event Forwarding
    Jenkins pluginEAWS ECR EGoogle GKEESplunk (built-in)
    Azure PipelinesPHarbor Scanner AdaptorPAmazon EKSESyslog (built-in)
    AWS CodepipelinePGoogle GCR (built-in)Azure AKSPIBM QRadar (built-in)
    CircleCIPAzure ACR (built-in)Native configurationsEIBM MCM (built-in)
    Github ActionsPArtifactory (built-in)
    GitlabPDockerhub (built-in)
    Tekton PipelinesPQuay (built-in)

    Additional Integration Tools

    Developer Tools:

    Admission ControllerPfor image scanning:

    Notification Channels which must be configured for Sysdig Secure and Sysdig Monitor separately. All are built-in.

    IBM Cloud Pak for Multicloud Management E full integration guide

    1 -

    Integrate IBM Cloud Pak for Multicloud Management

    IBM Cloud Pak for Multicloud Management centralizes visibility, governance, and automation for containerized workloads across clusters and clouds into a single dashboard. One of the key capabilities of the product is the centralization of security findings to help cloud team administrators understand, prioritize, manage and resolve security issues that are related to their cloud applications and workloads.

    The integration of Sysdig Secure with IBM Cloud Pak for Multicloud Management extends the depth of security intelligence available with:

    • Container image vulnerability management and configuration validation

    • Runtime security with prevention, threat detection, and mitigation

    • Incident response and forensics

    • Compliance and audit

    Sysdig Secure increases IBM Cloud Pak for Multicloud Management compliance capabilities to help meet regulatory requirements like NIST, PCI, GDPR, or HIPAA. By deploying the products together, users can extend container security to prevent vulnerabilities, stop threats, accelerate incident response, and enable forensics.

    The integration involves several components, each of which is installed and configured separately.

    Users of IBM Cloud Pak for Multicloud Management can follow the Installation Integration Guide to install and configure:

    • The Sysdig agent

    • Event forwarding integration

    • Single sign-on (SSO) integration via OpenID Connect

    • Navigation menu shortcut integration

    For More Information