Datadog Integration

The following guide helps you integrate and configure Datadog with Sprinto for infrastructure monitoring, incident management, and user access management. Based on your use case, you can follow the applicable procedure.

How does this integration help

The integration helps sprinto in the following ways:

• Infrastructure monitoring: Enables the infrastructure system monitoring, ensuring the security configuration meets the compliance requirements. Sprint tags a failing check for any configuration th

• Incident management: Retrieves the logged incident tickets from the configured Datadog account on Sprinto and ensures the incidents get actioned within the defined SLA and meet the data security complaint requirement.

• User access monitoring: The integration enhances user access control by validating user accounts from Datadog against defined access criteria. Sprinto identifies and flags any unauthorized or invalid access, triggering checks to revoke inappropriate permissions and maintain system security.

Sprinto checks for Datadog

Below are the Sprinto checks for the following integration types:

• Infrastructure monitoring: Sprinto checks for infrastructure monitoring

• Incident management: Sprinto checks for incident management

• Access management: Sprinto checks for users' access monitoring

Before you begin

• Log in on Sprinto as administrator.

• Ensure you have administrator access to the Datadog account to grant Sprinto the necessary permissions.

Integrate Sprinto with Datadog

Follow the below applicable procedure based on your usage of Datadog:

Infrastructure monitoring & Incident management:

1. Get the API key from the Datadog account.

• Log in to Datadog account using your credentials or the available Single Sign-On (SSO) option.

• Navigate to Organization settings

  
• Click API Keys under Access, then click + New Key.

  
• Enter a token name, and click Create Key. Copy the generated API key and save it securely. We will need this detail to build integration on Sprinto. Note: Make sure you copy and save the generated API key before clicking Finish. Once closed, the API key is not retrievable.

  
• Now, select Application Key from the left side menu, and click + New Key to generate a new application key. Note: If you have created the application previously for integration, you can use the same application key by adding the scopes mentioned in the next step.

  
• If creating a new application:

  • Enter the application key name and click the Create key. Copy the generated application key and save it securely. We will need these details to build integration on Sprinto. Note: Do not click Finish and close the generated key.

    
  • On New Key dial window, click Edit next to Scope.

  • Select the following scopes and click Save.

    • user_access_read

    • monitors_read

    • incidents_read

      
  • Ensure you have copied the generated application key, then click Finish.

• Finally, check the region of your Datadog account. You can check it from your browser’s address bar. For example, if your address bar URL is https://us5.datadoghq.com/, the region is US5.

1. Integrate Datadog on Sprinto.

• From the Sprinto admin portal, navigate to Security Hub > Settings > Integrations > Available, and click Connect next to Datadog.

  
• Click Connect next to Datadog for Infrastructure monitoring and incident management.

  
• Read the on-screen instructions, and click Next.

  
• On Integration page, select the acknowledgement checkbox and click Connect Datadog.

  
• Enter the following details you have copied from Step 1, then click Connect Datadog.

  • API Key

  • Application Key

  • Region

    

1. Add Datadog as an Infrastructure monitoring source on Sprinto.

• Go to Security Hub > Infrastructure > Infra systems, and click on the edit icon next to the capacity monitoring resources of your desired infrastructure service provider.

• Click Edit to change the default capacity monitoring resource.

  
• Select Datadog as a capacity monitoring resource, and click Save Change.

1. Add Datadog as an incident management tool on Sprinto.

• Go to Security Hub > Incidents > Overview, and click + Add system.

  
• On Add Incident Management page, select the Datadog from the list.

• From the Incident Overview page, select Datadog and click Configure Datadog.

• Select the date to sync incident tickets from your Datadog account.

Access Management:

Note: Truto is our integration partner for Datadog for user access monitoring. Sprinto utilized Truto’s API capabilities to streamline data inflow.

1. Get the API key from the Datadog account.

• Refer to Step 1 about Getting the API key from the Incident section of this guide.

1. Integrating Datadog with Sprinto.

• From the Sprinto admin portal, navigate to Security Hub > Settings > Integration, then select the Available tab.

• Click Connect next to Datadog.

  
• Click Connect next to Datadog for Access Review.

• Read the on-screen instructions, then click Next.

  
• Select the acknowledgment checkbox, then click Connect to Datadog. Note: Ensure you have the pop-up window enabled on your browser.

  
• Select your Datadog account region, then enter the API and Application key from Step 1, and click Connect.

  

1. Configure Datadog for access monitoring.

• From the Sprinto admin portal, navigate to Security Hub > Access, select the Overview tab, and click + Add Critical System.

  
• Select Datadog from the critical system library, then click Add Systems. “Connected” is highlighted next to Datadog if integration was built successfully in the previous step.

  
• On the Access Overview page, select Datadog from the critical systems list.

• Click Configure Now or Manage from the Summary tab.

  
• Click Configure or Edit next to Access monitoring

  
• Define the valid user access type for Datadog.

  

Please contact Sprinto Support if you have any queries related to the integration or need assistance.