SendGrid Integration
SendGrid is an email communication platform organizations use to manage transactional and marketing email campaigns.
Note: We use Truto.one as our integration partner to integrate and fetch required user details from the SendGrid account
How does this integration help
Integration helps to fetch the user list from the SendGrid account.
If a staff member with SendGrid account access is offboarded, Sprinto activates a check against that staff member to revoke the access.
Checks for SendGrid integration
Following are the Sprinto checks for SendGrid integration:
User should be identified
SendGrid access should be removed for offboarded user
Critical system access control should be configured
User access to Critical System should be valid
Note: The user access to the critical system becomes valid if the respective Org role is added to the system.
Before you begin
Log in to Sprinto as administrator.
Ensure you have “Admin” access on the SendGrid account you want to integrate.
How to integrate Sprinto with SendGrid
1. Obtain the API Key from SendGrid
Log in to your SendGrid account using your credentials.
Navigate to Settings > API Keys, then click Create API Key.
Enter an API Key Name, and select Restricted Access for API Key permissions.
Set User Account permission to Read access, then click Create & View.
Copy the generated API key and save it securely. Click Done to close the window. This is your permanent API key, which you will need for Sprinto integration.
You also need to grant permission (teammates.read) to the generated API key. Since the SendGrid UI doesn’t support this directly, create another API key with Full access and execute a cURL command: Note: You can delete the Full access key after completing this step.
Navigate to Settings > API Keys, then click Create API Key.
Enter an API key name, select Full Access for API Key permissions, then click Create & View.
Copy the generated API key and save it securely. This is a temporary key. Do not confuse it with the permanent API key from Step 5.
Open your command prompt or terminal and execute the following cURL command: Note: Replace truto_demo_api_key_id with your permanent API key and full_access_api_token with your temporary API key.
curl --location --request PUT 'https://api.sendgrid.com/v3/api_keys/<truto_demo_api_key_id>' \ --header 'Content-Type: application/json' \ --header 'Authorization: Bearer <full_access_api_token>' \ --data '{ "name": "Truto Demo", "scopes": ["teammates.read"] }'
After granting the required permissions, navigate to Settings > API Keys on SendGrid.
Click the settings icon next to the temporary API key (Full access) and select Delete API Key.
Integrate SendGrid on Sprinto.
On the Sprinto app, go to Security Hub > Settings > Integrations > Available, and click Connect next to SendGrid.
Read the on-screen instructions, and click Next.
On the Integration page, select the acknowledgment checkbox and click Connect to SendGrid. Note: Ensure you have a pop-up window enabled on your browser.
On the authentication page, enter the API key copied from Step 1 (Permant API key) and click Connect.
Configure valid users for SendGrid.
Go to Security Hub > Access > Critical systems, and select SendGrid.
On the Summary page, click Configure Now next to the SendGrid account.
On the Manage page, click Configure next to access validity.
Choose one of the options to define valid users based on roles.
Final step
The integration process is completed. To check if there are any tasks left or if any checks failed, go to Security Hub > Access and look for SendGrid’s critical system card.
If you need any assistance with the integration, kindly get in touch with Sprinto support.
Last updated