Set Up Infrastructure Services

Learn how to add and configure your cloud infrastructure systems in Sprinto for compliance monitoring.

Introduction

Setting up infrastructure services in Sprinto is the first step toward enabling automated security checks and compliance monitoring. By integrating your infrastructure provider accounts (such as AWS, Azure, GCP), Sprinto can fetch entity metadata, monitor security configurations, and trigger compliance workflows.


Before You Begin

Ensure you have:

  • Administrator access in Sprinto.

  • Required privileges in the infrastructure provider’s platform (e.g., permission to create API keys or service accounts).

  • The integration guide or credentials ready, such as project IDs, OCIDs, or region names (based on provider).


Steps to Add an Infrastructure System

  1. Go to Data Library → Infrastructure.

  2. You will land on the Infra systems tab.

  3. Click Add infra system.

  4. Select the provider you want to integrate (e.g., AWS, Azure, GCP, Oracle Cloud).

  5. Follow the on-screen instructions. These typically include:

    • Logging into the provider platform

    • Creating or selecting a user/service account

    • Generating and copying API keys or tokens

    • Assigning permissions (such as read-only, monitor, or security audit roles)

    • Providing metadata like region, tenancy ID, or fingerprint

Example: For Oracle Cloud, you’ll need to enter the tenancy OCID, user OCID, home region, and API key fingerprint.

  1. Click Connect to complete the setup.

Once connected, Sprinto begins syncing entities from the integrated account. This process may take a few minutes depending on the volume of resources.


After Integration

Once an infrastructure system is added:

  • You’ll see it listed on the Infra systems tab with details such as:

    • Capacity monitoring provider (e.g., Cloudwatch, Azure Monitor, Datadog)

    • Assigned infra owner

    • Number of entities and pending checks

  • If Sprinto detects a connection issue (e.g., expired API key), it will show a Connection error detected banner with a View & Fix link.

  • You can now proceed to:

    • Assign an infra owner

    • Classify entities

    • Review and resolve compliance checks


Add Workflow Checks for Non-Integrating Systems

If your infrastructure provider is not listed or doesn’t support API-based integration, you can still set up compliance checks using workflow checks:

  1. Click Add workflow check on the top-right.

  2. Select a predefined check (e.g., Database backup is done regularly), or click Create your own check.

  3. Configure the check details:

    • Title and description

    • Frequency (e.g., monthly)

    • Assignee (who is responsible for submitting evidence)

    • Evidence reviewer (optional)

  4. Click Add workflow check to activate it.

Last updated