# Cloudflare Integration Sprinto integrates with Cloudflare to automate compliance monitoring and access governance. This integration allows Sprinto to retrieve user access data and infrastructure configuration details from your Cloudflare account. Once connected, Sprinto can: * Monitor **Cloudflare user access** for access review controls * Retrieve **zone and firewall configuration information** * Automate compliance checks related to infrastructure security You can connect Cloudflare for the following purposes: * **Access Review** – Monitor user access and permissions in Cloudflare * **Infrastructure Monitoring** – Track Cloudflare zone and firewall configurations #### Sprinto Checks for Cloudflare Integration Following are the Sprinto checks available for Cloudflare integration:
Sprinto checkReference procedure
User should be identifiedHow to fix
Cloudflare access should be removed for offboarded userHow to fix
Critical system access control should be configuredHow to fix

User access to Critical System should be valid

Note: The user access to the critical system becomes valid if the respective Org role is added to the system.

How to fix
Before You Begin * Log in to Sprinto as an administrator. * Ensure you have "Admin" access to the Cloudflare account intended for integration. * Note that Sprito utilizes[ Truto.one](https://truto.one/) as its integration partner. ## Connect Cloudflare for Access Review Use this integration to monitor Cloudflare user access and automate access review checks. ### Data accessed by Sprinto Sprinto retrieves the following user metadata from Cloudflare: * Roles * Username * Status * Primary email * Two-factor authentication status This information is used to automate compliance checks and access review workflows. *** ### Connect the Access Review integration 1. Log in to the **Sprinto dashboard**. 2. Navigate to **Settings → Integrations**. 3. In the **All** tab, search for **Cloudflare**. 4. Click **Connect** next to **Cloudflare**.
Sprinto displays two integration options: * **Cloudflare – Access Review** * **Cloudflare Infra – Infrastructure Monitoring** 5. Click **Connect** next to **Cloudflare (Access Review)**.
6. Review the **permissions required** and **data accessed by Sprinto**. 7. Click **Next**.
6. In the setup window: * Select **I have admin access to my Cloudflare account**. * Click **Connect to Cloudflare**.
7. Enter your **Cloudflare API Key**. Know more how to [retrieve your API key](https://developers.cloudflare.com/fundamentals/api/get-started/create-token/). 8. Click **Connect** to complete the integration.
*** ## Connect Cloudflare for Infrastructure Monitoring You can also integrate Cloudflare with Sprinto to monitor infrastructure configurations such as zones and firewall settings. This integration enables Sprinto to automatically evaluate infrastructure-related compliance checks. ### Permissions required The API token used for this integration must allow Sprinto to read the following resources: * Accounts * Users * Zones *** ### Data accessed by Sprinto Sprinto retrieves the following information from Cloudflare: * Zone information * Firewall configuration status This data is used to automate infrastructure monitoring checks. *** ### Connect the Infrastructure Monitoring integration 1. Log in to the **Sprinto dashboard**. 2. Navigate to **Settings → Integrations**. 3. In the **All** tab, search for **Cloudflare**. 4. Click **Connect** next to **Cloudflare**. 5. Click **Connect** next to **Cloudflare Infra (Infrastructure Monitoring)**.
6. Review the **permissions required** and **data accessed by Sprinto**. 7. Click **Next**.
6. Generate a **Cloudflare API Token** with **Read all resources** scope. To generate an API Token. 1. Sign in to your Cloudflare dashboard. 2. Click the **user profile icon** (top right) and select **My Profile**. 3. Open the **API Tokens** tab. 4. Click **Create Token**. 5. Select the **Read all resources** template. 6. Click **Continue to summary**, then select **Create Token**. 7. Copy the generated token. You can only view this value once. 7. Click **Connect** to complete the integration.
*** ## Post-connection steps After successfully connecting Cloudflare, ensure the system is added to Sprinto’s **Access monitoring** if it was not previously configured. 1. Navigate to **Access → Overview** in the Sprinto dashboard. 2. Click **Add Critical System**. 3. Search for **Cloudflare**. 4. Select **Cloudflare** from the list. 5. Click **Add 1 System**.
Sprinto will begin monitoring Cloudflare user access as part of the **access review workflow**. If Cloudflare was already configured as a monitored system, no additional action is required. *** ## Troubleshooting ### Integration fails to connect Ensure that: * The API key or API token is valid. * The account used to generate the credentials has **administrator access**. * The API token includes **read access to required resources**. ### Data does not appear in Sprinto Allow a few minutes for the initial data synchronisation to complete. If the issue persists, disconnect and reconnect the integration. *** ### Final Step After completing Step 3, allow 15 to 20 minutes for Sprinto to finish the data syncing process. Sprinto may take few hours to evaluate the synced data and activate relevant Sprinto checks. If needed, you can visit Data Library > Access > Critical System to check for pending tasks next to Cloudflare. If you need any assistance with the integration, kindly get in touch with [Sprinto support](mailto:www.support@sprinto.com).