Sprinto Dashboard

Grafana Integration

The following guide will help you to integrate and configure your Grafana account on Sprinto for incident management and user access review.

Grafana is an open-source data visualization and monitoring tool that helps you create interactive dashboards and graphs for various data sources. It is widely used for monitoring systems, applications, and infrastructure, providing insights into metrics and performance data in real time.

How does this integration help Sprinto

Grafana’s integration with Sprinto allows Sprinto to read critical information, such as user account details, and open incident tickets on your Grafana account. These retrieved details help Sprinto compute the account’s compliance posture and missing configurations. Sprinto activates the Sprinto checks for any such missing configuration, helps you get aligned with compliance requirements, and improves your account’s data security.

Sprinto checks for Grafana integration

Following are the available Sprinto checks for various Grafana integration types:

Incident Management

Sprinto check

Required action

Reported incident should be closed in Grafana

The following Sprinto check starts failing against an incident log in Open status detected from the integrated Grafana account. How to fix: To pass the Sprinto check, take the necessary action against the reported incident and update the incident status to Closed. Additionally, you can declare data loss against the incident log from the Sprinto account.

Access review

Sprinto check

Reference procedure

Grafana access should be removed for offboarded user

How to fix

User should be identified

How to fix

User access to critical system should be valid

How to fix

Before you begin

  • Log in to Sprinto’s admin portal.

  • Ensure you have administrator privileges on the Grafana account you are integrating.

Integration procedure

Follow the below applicable procedure to integrate and configure Grafana with Sprinto:

Grafana as an incident management system

  1. Create a new service account and generate a token on Grafana to integrate with Sprinto.

  • Log in to your Grafana account using your credentials or available Sign-On options.

  • Once logged in, copy your account’s URL from your browser and save it for later. Refer to the below example.

  • From the main menu, go to Administration > Users and access > Service accounts.

  • Click Add Service Account to create a new service account for Sprinto integration.

  • Enter the following details on the service account form.

    • Name: Enter a name for the service account.

    • Role: Select the Viewer roles.

  • Click. Apply to save the changes.

  • Click Create. This generates a new service account.

  • Click Add service account token.

  • Enter a name for a new token and click Generate token. If required, you can define the token expiry. We recommend keeping the token expiry as No expiration for continuous data flow from the integration.

  • Copy the displayed API token and save it securely. We will need this API key on Sprinto to build integration.

  1. Integrate Grafana with Sprinto.

  • On the Sprinto app, go to Security Hub > Settings > Integrations, and select the Available tab.

  • Click Connect next to Grafana under the Incident Management Providers category.

  • Read the on-screen instructions, and click Next.

  • Enter the Grafana account’s URL and Token from Step 1 in the respective fields, and click Connect.

  1. Configuring Grafana as an incident management system.

  • Go to Security Hub > Settings > Incidents and select the Overview tab.

  • Click Add System.

  • Select Grafana from the list.

  • Click Add Grafana.

Grafana as an access review system

Note: Truto is our integration partner for building this integration. Sprinto streamlines the data inflow by using Truto's API endpoints.

  1. Create a service account on Grafana and get generate a token to integrate Grafana with Sprinto.

  • Follow Step 1 from the “Grafana as an incident management system” section to generate a new service account and token. If you have already created a service account and generated the API token from integrating Grafana for incident management, you can use the same token, or you can generate a new token under the same service account if required.

  1. Integrate Grafana with Sprinto.

  • On the Sprinto app, go to Security Hub > Settings > Integrations and click on the Available tab.

  • Click Connect next to Grafana.

  • Read the on-screen instructions, then click Next.

  • Select the acknowledgment checkbox, and click Connect to Grafana. Note: Ensure the pop-up window is enabled on your browser.

  • Enter your Grafana account’s URL and Token copied from Step 1, and click Connect.

  1. Configure Grafana as a critical system.

  • On the Sprinto app, go to Security Hub > Access > Overview, and click Add Critical system.

  • Select Grafana from the library, and click Add System.

  • On the Access Overview page, select Grafana from the active systems list.

  • Click Configure Now/ Manage from the Summary tab.

  • Click Configure next to Access validity.

  • Select one of the following options and define the valid access for the critical system.

Note: Wait until Sprinto completes the data syncing process. It may take up to 24 hrs for Sprinto to compute the required Sprinto checks Upon completing the Grafana account configuration for your desired use case on Sprinto, Sprinto starts syncing data from Grafana to compute the compliance posture of the integrated Grafana account. If any of the configurations do not align with compliance requirements, Sprinto highlights them with the help of Sprinto checks.

Please contact Sprinto Support, If you have any queries related to the integration or need any assistance.

PreviousGorgias IntegrationNextGusto Integration

Last updated