Connectors
Wiz Turbine Connector
8 min
overview the wiz connector facilitates seamless integration with wiz's cloud security platform, enabling automated security workflows and data retrieval within the swimlane ecosystem wiz is a comprehensive cloud security solution that provides deep visibility and advanced risk analysis across your cloud environment this connector enables swimlane turbine users to automate the retrieval and analysis of cloud resources, configuration findings, issues, reports, user information, and vulnerability findings directly within their security workflows by integrating with wiz, users can enhance their security posture with actionable insights, streamline compliance checks, and accelerate incident response with enriched cloud security data notes as of version 1 6 0, all report related actions have been removed from the wiz connector to align with wiz api best practices wiz api documentation https //integrate wiz io/reference/prerequisites prerequisites to effectively utilize the wiz connector for turbine, ensure you have the following prerequisites oauth 2 0 client credentials authentication with the following parameters api endpoint url the base url for the wiz api endpoints client id the unique identifier for your registered wiz application client secret the secret key associated with your client id to authenticate requests authentication url the endpoint url used to obtain the oauth 2 0 access token audience the intended recipient of the issued token, typically the api that will accept the token capabilities this connector provides the following capabilities get cloud resources v2 get configuration findings get issues get report status and url get list of report names get users get vulnerability findings pull audit logs rerun report asset setup api endpoint url the wiz integration api has a single url for all the actions https //api \<region> app wiz io/graphql you can use the above url, and replace it with the region where your tenant resides, e g us1 , us2 , eu1 , or eu2 example https //api us17 app wiz io/graphql client credentials the client id and client secret must be provided by your wiz customer or wiz customer service team token url there are two possible token urls depending on your service account's identity provider idp endpoint endpoint for gov tenants amazon cognito https //auth app wiz io/oauth/token https //auth app wiz io/oauth/tokenhttps //auth gov wiz io/oauth/token https //auth gov wiz io/oauth/token auth0 https //auth wiz io/oauth/token https //auth wiz io/oauth/tokenhttps //auth0 gov wiz io/oauth/token https //auth0 gov wiz io/oauth/token audience choose a relevant audience from the following idp audience amazon cognito wiz api auth0 beyond api action setup you need different permissions for each of the actions to run please refer to the api documentation to know more