Integrations

Use Ansible modules for VEN and C-VEN pairing and to create, update, and remove labels.

See User Guide.

The Illumio - Armis integration allows you to view iOT inventories and their metadata. This integration extends Illumio's zero-trust model for IoT devices to provide IoT/OT segmentation.

See About the Illumio and Armis Integration.

The Illumio integration with Check Point allows you to collect and analyze firewall logs using Check Point's native log-export capability and view this data within the Illumio Platform. With this integration, your organization can make data-driven security-policy decisions to improve its security posture.

See About the Illumio and Check Point Integration.

The Illumio and Fortinet integration allows you to ingest flow logs from both on-premise and cloud Fortinet FortiGate firewalls into Illumio Insights. This integration delivers unified visibility across the network and enables you to rapidly detect security gaps and identify potential breaches before they occur.

See Illumio and Fortinet Integration Guide.

The Illumio App for ServiceNow provides enriched workload collection on the Illumio Policy Compute Engine (PCE) instance using the database of workloads discovered by ServiceNow. You can use the ServiceNow tables as a customized source for workloads and synchronize the data to the PCE both automatically and manually.

See ServiceNow CMDB.

The Illumio App for Splunk integrates with the Illumio Policy Compute Engine (PCE) to provide security and operational insights into your Illumio-secured data center.

The Illumio Technology Add-On for Splunk enriches Illumio PCE data with the Common Information Model (CIM) field names, event types and tags.

See Illumio App for Splunk 3.2.x and Illumio App and Technology Add-On for Splunk 4.x.

The Illumio App for QRadar integrates with the Illumio Policy Compute Engine (PCE) to provide insights into your Illumio-secured data center. It provides the following dashboards that are integrated into the QRadar user interface:

See QRadar.

The Illumio integration with the IBM SOAR platform allows you to automate actions in Illumio Core through the use of SOAR functions and workflows.

The Illumio Plugin for Netskope Cloud Exchange extends Illumio Zero Trust Segmentation (ZTS) principles to remote access architectures. Using Illumio's ZTS combined with Netskope's Security Service Edge provides dynamic access controls and security across hybrid and multi-cloud environments.

See Netskope.

The Illumio Sentinel Solution provides an integration between Microsoft Sentinel and Illumio's Zero Trust Segmentation platform. This integration enhances SecOps and provides greater visibility into workloads, faster response to incidents, and strengthened compliance.

See Sentinel 3.4.0.

The Illumio Terraform source allows you to manage resources and policy objects on the Illumio Policy Compute Engine (PCE). With Terraform, you can represent your infrastructure and policy as code and also manage the PCE state.

See Terraform.

This integration connects to Illumio Core APIs to perform investigative and restorative actions. It retrieves the traffic analysis of a port or protocol, creates segmentation rule-sets for workloads, and creates enforcement boundaries for microsegmentation.

The Illumio integration with Palo Alto Networks Next-Generation Firewall allows organizations to collect and analyze firewall logs to enhance visibility, drive segmentation decisions, and enhance their security posture.

See About the Illumio and Palo Alto Networks Next-Generation Firewall (NGFW) Integration.

The Illumio and ServiceNow ITSM integration allows you to create a ServiceNow IT ticket from within Illumio Console.

See About the Illumio and ServiceNow ITSM Integration.

The Wiz Connector for Illumio integration uses security events from the Wiz application to augment flow data in Illumio Console to help you understand how resources outside your organization are interacting with your data center and cloud assets.

See Wiz Connector for Illumio Integration Guide.