
AppOmni
Cloud Security- Overview
- Setup
- Data & mappings
- Operations & API
- Changelog
The AppOmni Connector integrates with AppOmni, a SaaS Security Posture Management (SSPM) platform, to synchronize monitored SaaS services, security posture findings, policy definitions, users, and groups into Brinqa.
Data retrieved from AppOmni
| Connector Object | Required | Maps to Data Model |
|---|---|---|
| MonitoredService → Application | Yes | Application |
| PostureFinding → Violation | Yes | Violation |
| PostureFindingDefinition → ViolationDefinition | Yes | Violation Definition |
| AppOmniUser → Person | Yes | Person |
| AppOmniGroup → Team | Yes | Team |
Model relationships
For detailed steps on how to view the data retrieved from AppOmni in the Brinqa Platform, see How to view your data.
Connection settings
When setting up a data integration, select AppOmni from the Connector dropdown and provide the following:
| Setting | Required | Default | Description |
|---|---|---|---|
| API URL | No | https://app.appomni.com/api/v1 | AppOmni API URL (e.g. https://your-instance.appomni.com/api/v1) |
| API Token | Yes | — | AppOmni API token for authentication |
| Page size | No | 100 | Maximum number of records to get per API request |
| Maximum retries | No | 5 | The maximum number of retry attempts before giving up a request |
How to obtain AppOmni credentials
[Add connector-specific credential steps. Templated placeholder — review before publish.]
Attribute mappings
Expand the sections below to view the mappings between the source and the Brinqa data model attributes:
MonitoredService → Application
| Source Field Name | SDM Attribute |
|---|---|
| Generated (active/inactive/archived status) | STATUS |
| Generated (asset categories) | CATEGORIES |
| Generated (last sync time) | LAST_CAPTURED |
MonitoredServiceResource.created | SOURCE_CREATED_DATE |
MonitoredServiceResource.description | DESCRIPTION |
MonitoredServiceResource.enforcementMode | ENFORCEMENT_MODE |
MonitoredServiceResource.externalId | EXTERNAL_ID |
MonitoredServiceResource.id | UID |
MonitoredServiceResource.integrationConnected | INTEGRATION_CONNECTED |
MonitoredServiceResource.isArchived | IS_ARCHIVED |
MonitoredServiceResource.modified | SOURCE_LAST_MODIFIED |
MonitoredServiceResource.name or serviceName | NAME |
MonitoredServiceResource.openIssuesCount | OPEN_ISSUES_COUNT |
MonitoredServiceResource.score | SCORE |
MonitoredServiceResource.serviceId | SERVICE_ID |
MonitoredServiceResource.serviceName | SERVICE_NAME |
MonitoredServiceResource.serviceType | SERVICE_TYPE |
PostureFinding → Violation
| Source Field Name | SDM Attribute |
|---|---|
FindingResource.appomniRiskLevel | RISK_LEVEL |
FindingResource.appomniRiskScore | RISK_SCORE |
FindingResource.assignee | ASSIGNEE |
FindingResource.created | SOURCE_CREATED_DATE |
FindingResource.description or summary | DESCRIPTION |
FindingResource.findingType | FINDING_TYPE |
FindingResource.firstOpened | FIRST_OPENED |
FindingResource.id | UID |
FindingResource.lastClosed | LAST_CLOSED |
FindingResource.lastOpened | LAST_OPENED |
FindingResource.modified | SOURCE_LAST_MODIFIED |
FindingResource.monitoredService | TARGETS |
FindingResource.monitoredService | MONITORED_SERVICE |
FindingResource.policyId | TYPE |
FindingResource.policyId | POLICY_ID |
FindingResource.policyName | POLICY_NAME |
FindingResource.remediationSteps | REMEDIATION_STEPS |
FindingResource.severity or appomniRiskLevel (normalized) | SEVERITY |
FindingResource.status | PROVIDER_STATUS |
FindingResource.status (normalized) | SOURCE_STATUS |
FindingResource.summary | SUMMARY |
FindingResource.title | NAME |
| Generated (last sync time) | LAST_CAPTURED |
PostureFindingDefinition → ViolationDefinition
| Source Field Name | SDM Attribute |
|---|---|
| Generated (last sync time) | LAST_CAPTURED |
| Generated (numeric severity score) | SEVERITY_SCORE |
PolicyResource.category | CATEGORIES |
PolicyResource.category | CATEGORY |
PolicyResource.created | SOURCE_CREATED_DATE |
PolicyResource.description | DESCRIPTION |
PolicyResource.externalId | EXTERNAL_ID |
PolicyResource.id | UID |
PolicyResource.isReference | IS_REFERENCE |
PolicyResource.modified | SOURCE_LAST_MODIFIED |
PolicyResource.name | NAME |
PolicyResource.policyFramework | POLICY_FRAMEWORK |
PolicyResource.policyType | TAGS |
PolicyResource.policyType | POLICY_TYPE |
PolicyResource.severity (normalized) | SEVERITY |
PolicyResource.severity (raw) | SOURCE_SEVERITY |
AppOmniUser → Person
| Source Field Name | SDM Attribute |
|---|---|
active (active/inactive) | STATUS |
active (active/inactive) | EMPLOYMENT_STATUS |
displayName | NAME |
displayName | DESCRIPTION |
emails[*].value | EMAILS |
| Generated (asset category) | CATEGORIES |
| Generated (department) | DEPARTMENT |
| Generated (last sync time) | LAST_CAPTURED |
| Generated (primary email address) | |
groups[*].value | GROUPS |
id | UID |
meta.created | SOURCE_CREATED_DATE |
meta.lastModified | SOURCE_LAST_MODIFIED |
name.familyName | LAST_NAME |
name.givenName | FIRST_NAME |
title | JOB_TITLE |
userName | USERNAME |
AppOmniGroup → Team
| Source Field Name | SDM Attribute |
|---|---|
displayName | NAME |
displayName | DESCRIPTION |
| Generated (asset category) | CATEGORIES |
| Generated (group status) | STATUS |
| Generated (last sync time) | LAST_CAPTURED |
id | UID |
members.size() | MEMBER_COUNT |
members[*].value | MEMBERS |
meta.created | SOURCE_CREATED_DATE |
meta.lastModified | SOURCE_LAST_MODIFIED |
Operations & API
Expand each connector object to see its operation options, delta-sync behavior, and the API it uses. See connector operation options for how to apply operation options (keys and values are case-sensitive).
MonitoredService → Application
Operation options
| Option | Type | Default | Description |
|---|---|---|---|
serviceType | String | — | Filter by service type (e.g. google_workspace, salesforce) |
isArchived | String | — | Filter by archived status (true or false) |
enforcementMode | String | — | Filter by enforcement mode (e.g. monitoring, enforcing) |
annotations | String | 1 | Include computed fields like open_issues_count |
Delta sync
Not supported. The connector performs a full sync of MonitoredService → Application on every run and applies no incremental date filter.
API
- Type: REST endpoint · Endpoint:
GET /core/monitoredservice/ - Default filters:
annotations=1(to include computed fields likeopen_issues_count)
PostureFinding → Violation
Operation options
| Option | Type | Default | Description |
|---|---|---|---|
status | String | — | Filter by status (open or closed) |
sourceType | String | — | Filter by source type (scanner or insight) |
riskScoreGte | String | — | Minimum risk score threshold |
riskScoreLte | String | — | Maximum risk score threshold |
monitoredServiceIn | String | — | Comma-separated monitored service IDs |
Delta sync
Not supported. The connector performs a full sync of PostureFinding → Violation on every run and applies no incremental date filter.
API
- Type: REST endpoint · Endpoint:
GET /findings/finding/ - Default filters: None
PostureFindingDefinition → ViolationDefinition
Operation options
| Option | Type | Default | Description |
|---|---|---|---|
isReference | String | — | Filter by reference policies (true or false) |
Delta sync
Not supported. The connector performs a full sync of PostureFindingDefinition → ViolationDefinition on every run and applies no incremental date filter.
API
- Type: REST endpoint · Endpoint:
GET /core/policy/ - Default filters: None
AppOmniUser → Person
Operation options
This object does not support any operation options.
Delta sync
Not supported. The connector performs a full sync of AppOmniUser → Person on every run and applies no incremental date filter.
API
- Type: SCIM 2.0 REST endpoint · Endpoint:
GET /scim/v2/Users - Default filters: None
AppOmniGroup → Team
Operation options
This object does not support any operation options.
Delta sync
Not supported. The connector performs a full sync of AppOmniGroup → Team on every run and applies no incremental date filter.
API
- Type: SCIM 2.0 REST endpoint · Endpoint:
GET /scim/v2/Groups - Default filters: None
Changelog
The AppOmni connector has undergone the following changes:
| Version | Description | Migration Steps |
|---|---|---|
| 3.0.1 | Improvements - Updated the AppOmni connector logo | N/A |
| 3.0.0 | Overview The AppOmni connector integrates with AppOmni, a SaaS Security Posture Management (SSPM) platform, to synchronize monitored SaaS services, security posture findings, policy definitions, users, and groups. Category: Cloud Security Models | N/A |