Capabilities
Notes:
- The Wiz Insights connector syncs security issues from Wiz that are related to
USER_ACCOUNTandSERVICE_ACCOUNTentity types. - This connector does not support provisioning. It is a read-only connector that syncs security insights.
- The connector supports incremental sync via an event feed that polls for issues with updated statuses.
Gather Wiz credentials
1
Log in to Wiz and navigate to Settings > Service Accounts.
2
Create a new service account with OAuth2 credentials:
- Click Add Service Account
-
Enter a name:
C1 -
Select the following scope:
read:issues- Allows syncing security issues as insights
- Click Create
- Copy and save the Client ID and Client Secret securely
3
Determine your Wiz API endpoints:
- GraphQL API URL: The regional API endpoint for your Wiz tenant (e.g.,
https://api.us17.app.wiz.io/graphql) - Auth Endpoint: The OAuth2 token endpoint (e.g.,
https://auth.app.wiz.io/oauth/token)
Configure the Wiz Insights connector
- Cloud-hosted
- Self-hosted
Follow these instructions to use a built-in, no-code connector hosted by C1.Done. Your Wiz Insights connector is now pulling security insights into C1.
1
In C1, navigate to Integrations > Connectors and click Add connector.
2
Search for Wiz Insights and click Add.
3
Choose how to set up the new Wiz Insights connector:
- Add the connector to a currently unmanaged app (select from the list of apps that were discovered in your identity, SSO, or federation provider that are not yet managed with C1)
- Add the connector to a managed app (select from the list of existing managed apps)
- Create a new managed app
4
Set the owner for this connector. You can manage the connector yourself, or choose someone else from the list of C1 users. Setting multiple owners is allowed.If you choose someone else, C1 will notify the new connector owner by email that their help is needed to complete the setup process.
5
Click Next.
6
Find the Settings area of the page and click Edit.
7
Enter the required configuration:
- Wiz API URL (required): The Wiz GraphQL API endpoint for your region
- Client ID (required): OAuth2 client ID from your Wiz service account
- Client Secret (required): OAuth2 client secret from your Wiz service account
- Auth Endpoint (required): OAuth2 token endpoint for authentication
8
Click Save.
9
The connector’s label changes to Syncing, followed by Connected. You can view the logs to ensure that information is syncing.