What is Wiz? #
Wiz analyzes all layers of the cloud stack to identify high-risk attack vectors to be prioritized and remediated.
Why Should You Use the Wiz Connector? #
The Wiz connector provides visibility into the assets in your environment. You can use this visibility to:
-
ensure assets are managed per your security policies
-
derive relationships between assets, users, applications, and data
How Does This Connector Work? #
Lucidum executes read-only requests to the Wiz REST API and ingests only meta-data about Wiz devices. Lucidum does not retrieve any data stored on your assets.
Configuring the Connector in Lucidum #
|
Field |
Description |
Example |
|---|---|---|
|
URL |
The URL for the Wiz API. |
https://api.us13.app.wiz.io/graphql |
|
Client ID |
Client ID for a Wiz account that has read access to API data. |
|
|
Client Secret |
Client secret for a Wiz account that has read access to API data. |
|
Source Documentation #
Creating a Service Account for Wiz Security #
Before configuring the Wiz Security connector in Lucidum, you must first create an API Key. Lucidum will use the API key to access the Wiz Security API.
To get the Wiz client ID and client secret:
-
Go to Settings >Â Service Accounts.
-
Click on Add Service Account and name the new service account, e.g. “Lucidum”.
-
Optionally you can narrow the scope of this service account to specific projects.
-
Choose the permission read:resources and click Add Service Account.
-
Copy the CLIENT SECRET (you will not be able to copy it after this stage).
-
Copy the CLIENT ID (it will be visible under the service accounts page).
Required Permissions #
|
Object |
Permissions |
|---|---|
|
 Permisson |
read:resources |
API Documentation #
https://app.wiz.io/login?redirect=%2Fwiz-docs (needs login)
