Skip to main content

Integrations

  • Integrations
  • About Illumio Integrations

About Illumio Integrations

This topic describes the available Illumio integrations with third-party providers.

For information about integrations not described in this topic and for links to the software, see Table 1, “Apps and Integration Tools.

Table 1. Apps and Integration Tools

Integration

Description

Links

Validated Compatibility

Ansible

Ansible modules for

  • VEN and C-VEN pairing

  • Label creation/update/removal

User Guide

Version 0.2.6

  • Ansible 2.12+

  • PCE 22.5, 22.2, 21.5, 21.2, SaaS

Armis

Allows you to view flow data from IoT devices and between IoT devices and enforce policies without needing to install a physical device

HTML

PDF

SaaS

Check Point

Use Check Point's native log export capabilities to collect and analyze firewall logs and use their data to make data-driven policy decisions

HTML

PDF

SaaS

IBM QRadar (SIEM)

Connector and Dashboards to view Illumio flow and event data

v1.4

Integration Guide

(HTML)

(PDF)

v1.3

Integration Guide (PDF)

  • QRadar 7.4.3+

  • PCE 24.1 (SaaS), 23.5, 23.2, 22.5, and 21.5

  • QRadar 7.4.1+

  • PCE 21.2, 19.3, SaaS

IBM QRadar (SOAR)

Provides a selective port-blocking playbook

v1.0

User Guide (PDF)

  • PCE 21.2+, SaaS

Netskope Cloud Exchange

Ensures dynamic access controls and security across hybrid and multi-cloud environments

v1.0.0 Integration Guide

HTML

PDF

Palo Alto Cortex (SOAR)

Provides a selective port-blocking playbook

v1.0.1

Configuration Guide

Port Blocking Playbook Guide

  • Cortex 6.0 (6.2, 6.5, 6.8, and master) PCE 22.2, 21.5, 21.2, SaaS

Python (SDK)

Python REST client for Illumio PCE APIs

v1.1.3

User Guide

  • PCE 21.2+, SaaS

Sentinel

Azure Function Apps for data ingestion

v3.4.0

Integration Guide

HTML

PDF

  • PCE SaaS

ServiceNow (CMDB)

Uses ServiceNow CMDB as the source of truth for labeling PCE workloads with R/A/E/L labels

v2.5.0

Installation and Configuration Guide (PDF)

  • Yokohama, Vancouver, Washington DC, Xanadu

  • PCE 23.2, 23.5, 24.2, 25.2, or SaaS

Splunk (SIEM)

Connector and Dashboards to view Illumio flow and event data

TA-Illumio v3.2.4

Illumio App for Splunk v3.2.1

User Guide v3.2.4 (HTML)

User Guide v3.2.4 (PDF)

EULA (PDF)

TA-Illumio v4.0.3

Illumio App for Splunk v4.0.1

Integration Guide v4.x

(HTML)

(PDF)

For v3.2.4:

  • Splunk 9.1, 9.0, 8.2, 8.1 + PCE 21.2, 21.5, 22.2, 22.5, and SaaS

For v4.0.3:

  • Splunk 9.3, 9.2, 9.1, 9.0, 8.2, 8.1 + PCE 21.5, 22.2, 22.5, 23.2, 23.5 and SaaS

Terraform

Terraform HCL scripts to manage PCE policy and policy objects

v1.1.4

User Guide

  • Terraform 1.4+

  • PCE 22.5, 22.2, 21.5, 21.2, SaaS

Wiz

The Wiz Connector for Illumio uses security events from Wiz cloud to augment cloud resources and flow data in Illumio to help you understand potential vulnerabilities and exposures to security breaches in your cloud environment.

Wiz Connector for Illumio

(HTML)

(PDF)

N/A



Note

Integration with Third-Party Applications. Illumio’s products (the “Products”) may contain features designed to integrate and/or interoperate with Third-Party Applications (as defined below). Illumio cannot guarantee the continued availability of such Product features, and may cease providing them without entitling an Illumio customer (‘Customer”) to any refund, credit, or other compensation, if for example and without limitation, the provider of a Third-Party Application ceases to make the Third-Party Application available for interoperation with the corresponding Product features in a manner acceptable to Illumio.

If Customer chooses to use a Third-Party Application with a Product, Customer grants Illumio permission to allow the Third-Party Application and its provider to access Customer Data and information about Customer’s usage of the Third-Party Application as appropriate for the interoperation of that Third-Party Application with a Product.