Ctrlk
Sprinto DashboardAPI Reference
For the complete documentation index, see llms.txt. This page is also available as Markdown.

Overview

Understand how Sprinto Monitors help your organisation stay compliant through automated checks, evidence workflows, and real-time issue resolution.

Monitors in Sprinto are automated or manual checks that ensure your organisation is compliant with regulatory and security requirements. They validate configurations, usage behaviours, and infrastructure states across connected systems like AWS, Azure, Google Workspace, GitHub, and more.

Each monitor represents a specific control requirement (e.g., “Ensure MFA is enabled for root accounts”) and provides guidance on how to achieve and maintain compliance.

How it Works

When you integrate a service or define a workflow in Sprinto, relevant monitors are auto-generated based on your compliance framework. Each monitor:

  • Is evaluated on a periodic basis.

  • Shows a real-time status: Passing, Failing, Not configured, or Evidence required.

  • Can be resolved either automatically (via integration) or manually (via evidence upload).

Types of Monitors

Monitor Type
Description

Automated

Sprinto checks integration data periodically to assess compliance status.

Manual

Requires you to upload evidence (e.g., screenshots, logs) to complete the check.

Dr. Sprinto

A Sprinto agent running on endpoints to verify device-level configurations.

Decisioning

Monitors that require human review, such as approving or rejecting user access.

What You Can Monitor

Sprinto provides coverage across various categories:

  • Authentication & Access – For example, MFA status, login protection, inactive users

  • Cloud Infrastructure – For example, CPU, memory, database usage, connections

  • Encryption & Backup – For example, key management, EBS/DynamoDB encryption, backup configurations

  • Audit & Logging – For example, VPC/NSG flow logs, CloudTrail, server access logs

  • Workflow Checks – For example, disaster recovery plans, password policy enforcement

  • Device & Endpoint Monitoring – via Dr. Sprinto

Monitor States

Status
Meaning

Passing

The check passed and no action is needed.

Failing

The check has failed and must be resolved.

Not configured

Required services are not integrated or data is missing.

Evidence required

Awaiting evidence upload for manual monitors.

Common Actions

  • Fix failing monitors by following the remediation steps listed on the monitor card.

  • Upload evidence for manual monitors where integration is not possible.

  • Assign decision makers for user decisioning monitors.

  • Track history of each monitor’s compliance status over time.

  • View monitor details including frequency, rationale, and remediation guidance.

Best Practices

  • Integrate all supported services to maximise automated coverage.

  • Periodically review manual evidence requirements and automate where possible.

  • Use labels and filters in the dashboard to track critical or failing monitors.

  • Assign monitors to relevant stakeholders to streamline resolution workflows.

PreviousTrust and Data Handling in Integration AggregatorsNextAuthentication & Access Monitors

Last updated