Integrations

Ansible

User Guide

The Ansible integration provides modules and plugins that allow you to automate VEN and C-VEN pairing and to create, update, and remove labels using Ansible playbooks.

Version 0.2.6

Ansible 21.2 + PCE 22.2, 22.5, SaaS

Armis

About the Illumio and Armis Integration (HTML)

PDF

The Illumio - Armis integration imports IoT asset inventories and their metadata from Armis into Illumio. This integration enhances IoT/OT visibility and extends Illumio's zero-trust segmentation model to unmanaged devices.

N/A

SaaS

Check Point

About the Illumio and Check Point Integration (HTML)

PDF

The Check Point integration allows Illumio to ingest and analyze firewall logs from Check Point devices. The ingested Check Point logs allow you to assess your security policies and strengthens your ability to make data-driven segmentation decisions.

N/A

SaaS

Fortinet

About the Illumio and Fortinet Integration (HTML)

PDF

The Illumio and Fortinet integration ingests logs from cloud-based and on-premises firewalls into Illumio Insights. It consolidates visibility across your environments and helps you to detect security gaps and identify potential security issues.

N/A

SaaS

Palo Alto Networks

About the Illumio and Palo Alto Networks Next-Generation Firewall (NGFW) Integration (HTML)

PDF

The Illumio integration with Palo Alto Networks Next-Generation Firewall ( NGFW) allows organizations to collect and analyze firewall logs to enhance visibility, drive segmentation decisions, and improve their security posture.

N/A

SaaS

Microsoft Sentinel

Introduction to the Illumio Sentinel Solution (HTML)

PDF

The Illumio Sentinel Solution provides the integration between Microsoft Sentinel and Illumio's Zero Trust Segmentation platform and provides enhanced security operations, greater visibility into workloads, faster response to incidents, and strengthened compliance.

N/A

PCE SaaS

IBM QRadar SOAR

User Guide (PDF)

The Illumio integration with the IBM SOAR platform allows you to automate actions in Illumio Core through the use of SOAR functions and workflows.

Version 1.0

PCE 21.2+, SaaS

Illumio App for QRadar (SIEM)

Version 1.4:

What's New in This Release (HTML)

PDF

The Illumio App for QRadar integrates with the Illumio PCE to provide insights into your Illumio-secured data center and includes dashboards that monitor east-west traffic and the health of your deployed and managed PCEs.

Version 1.4

Version 1.4:

QRadar 7.4.3 + PCE 22.5, 23.2, 23.5, 24.2, and SaaS

Version 1.3

Integration Guide PDF

Version 1.3

Version 1.3:

QRadar 7.4.1 + SaaS

Palo Alto Cortext (SOAR)

Configuration Guide

Port Blocking Playbook Guide

This integration connects to Illumio Core APIs to perform investigative and restorative actions. It retrieves the traffic analysis of a port or protocol, creates segmentation rule-sets for workloads, and creates enforcement boundaries for microsegmentation.

Version 1.0.1

Cortex 6.0 (6.2, 6.5, 6.8, and master) PCE 22.2, 21.5, 21.2, SaaS

Splunk

Version 4.x

About the Illumio and Splunk Integration (HTML)

PDF

The Illumio App for Splunk provides operational and security dashboards using data retrieved from the Illumio PCE. The Illumio Technology Add-On for Splunk introduces Common Information Model (CIM) mappings, event types, and field normalization for Illumio data.

Version 4.x:

Illumio App for Splunk

Illumio Technology Add-On for Splunk

4.x:

Splunk 9.3, 9.2, 9.1, 9.0, 8.2 8.1 + PCE 21.5, 22.2, 22.5, 23.2, 23.5 and SaaS

Version 3.2.x:

What's New in Version 3.2.4 (HTML)

PDF

Version 3.2.x:

Illumio App for Splunk

Illumio Technology Add-On for Splunk

3.2.x:

Splunk 9.1, 9.0, 8.2, 8.1 + PCE 21.2, 21.5, 22.2, 22.5, and SaaS

Terraform

Illumio-Core Provider

The Illumio Terraform source allows you to manage resources and policy objects on the Illumio Policy Compute Engine (PCE). With Terraform, you can represent your infrastructure and policy as code and also manage the PCE state.

Version 1.16

Terraform 1.4+

PCE 21.2, 21.5, 22.2, 22.5, SaaS

Netskope

Introducing the Illumio Plug-In for Netskope Exchange (HTML)

PDF

The Illumio Plugin for Netskope Cloud Exchange extends Illumio Zero Trust Segmentation (ZTS) principles to remote access architectures. Using Illumio's ZTS combined with Netskope's Security Service Edge provides dynamic access controls and security across hybrid and multi-cloud environments.

N/A

Terraform 1.4+

PCE 21.2, 21.5, 22.2, 22.5, SaaS

ServiceNow CMDB

Scoped Certified Administration Guide (PDF)

The Illumio App for ServiceNow CMDB provides enriched workload collection on the Illumio PCE instance using the database of workloads discovered by ServiceNow. You can use the ServiceNow tables as a customized source for workloads and sync the data to the PCE both automatically and manually.

Version 2.5.0

Yokohama, Vancouver, Washington DC, Xanadu

PCE 23.2, 23.5, 24.2, 25.2, or SaaS

ServiceNow ITSM

ServiceNow ITSM Integration Guide (HTML)

PDF

The Illumio and ServiceNow ITSM integration allows you to create a ServiceNow IT ticket from within Illumio Console.

N/A

SaaS

Wiz

About the Wiz Connector for Illumio (HTML)

PDF

The Wiz Connector for Illumio uses security events from Wiz Cloud to augment cloud resources and cloud flow data in Illumio to help you understand potential vulnerabilities and exposures to security breaches in your cloud environment.

N/A

SaaS