What is the Sonatype IQ Server? #
The Sonatype IQ Server is the governance and policy management tool for the open-source components stored in the Nexus Repository. The Sonatype IQ server powers the Repository Firewall, Lifecycle, and Auditor solutions.
Why Should You Use the Sonatype IQ Server? #
The connector provides visibility into the assets managed by Sonatype IQ Server. You can use this visibility to:
- ensure assets are managed per your security policies
- monitor each endpoint and its status
How Does This Connector Work? #
Lucidum executes read-only requests to the Sonatype IQ Server REST API and ingests only meta-data about asset. Lucidum does not retrieve any data stored on your assets.
Configuring the Connector in Lucidum #
| Field |
Description |
Example |
|---|---|---|
|
URL |
The URL for the Sonatype API. |
http://ip_address:port_number/imcrs |
|
Username |
The user name for the Sonatype account |
tony.stark |
|
Password |
The password for the Sonatype account. |
iamironman1962! |
Source Documentation #
Required Permissions #
The account associated with the Lucidum connector requires the built-in role:
- Component permission (must have access to the Repository Managers).
For details, see:
https://help.sonatype.com/en/role-management.html#managing-organizational-roles
https://help.sonatype.com/en/role-management.html#evaluate-individual-components
Contact your Lucidum Sales Representative for help with permissions.
API Documentation #
API v2
