Aqua Security
Aqua Security provides workload protection and security for containers, Kubernetes, and serverless applications. You can bring container, host, and security data from Aqua into Brinqa to extend the visibility and control you have over your applications and infrastructure. You can use the Aqua connector in conjunction with Brinqa's reporting and risk management capabilities to construct a unified view of your attack surface and strengthen your cybersecurity posture.
This document details the information you must provide for the connector to authenticate with Aqua Security and how to obtain that information from Aqua. See create a data integration for step-by-step instructions on setting up the integration.
Required connection settings
When setting up a data integration, select Aqua from the Connector drop-down. If you cannot find the connector in the drop-down, make sure you have installed it first. You must provide the following information to authenticate Aqua with Brinqa:
-
Server URL: The API Server URL.
-
Username and Password: The username and password associated with the Aqua user, which must have permissions to log in to the API server and return data.
Additional settings
The Aqua connector contains additional options for specific configuration:
-
Set page size: The maximum number of records to get per API request. The default setting is 100. It is not recommended to go over 100.
-
Parallel requests: The maximum number of parallel API requests. The default setting is 4.
-
Skip certificate verification: Select this option to allow for untrusted certificates.
Types of data to retrieve
The Aqua connector can retrieve the following types of data from the Aqua API:
Table 1: Data retrieved from Aqua
| Connector Object | Required | Maps to Data Model |
|---|---|---|
| Container | Yes | Container |
| Container Image | Yes | Container image |
| Host | Yes | Host |
| Vulnerability | Yes | Vulnerability |
| Vulnerability Definition | Yes | Vulnerability definition |
For detailed steps on how to view the data retrieved from Aqua in the Brinqa Platform, see How to view your data.
Operation options
The Aqua connector supports the following operation options. See connector operation options for information about how to apply them.
Table 2: Aqua connector operation options
| Connector Object | Option | All Possible values | Description | Example |
|---|---|---|---|---|
| Container | name | Any container name | Retrieves only containers with the specified name. | Key: name Value: kubernetes. This key and value combination only retrieves containers named kubernetes. |
| registry | Any container registiry | Retrieves only containers from the specified registry. | Key: registry Value: docker. This key and value combination only retrieves containers from the docker registry. | |
| repository | Any container repository | Retrieves only containers from the specified repository. | Key: repository Value: angular-spring. This key and value combination only retrieves containers form the angular-spring repository. | |
| Container Image | name | Any container image name | Retrieves only container images with the specified name. | Key: name Value: alpine/openssl:latest. This key and value combination only retrieves container images named alpine/openssl:latest. |
| registry | Any container image registry | Retrieves only container images from the specified registry. | Key: registry Value: docker hub. This key and value combination only retrieves container images from the docker hub registry. | |
| repository | Any container image repository | Retrieves only container images from the specified repository. | Key: repository Value: angular-spring. The key and value combination only retrieves container images from the angular-spring repository. | |
| Host | name | Any host name | Retrieves only hosts with the specified name. | Key: name Value: webserver01. This key and value combination only retrieves hosts names webserver01. |
| registry | Any host registry | Retrieves only hosts from the specified registry. | Key registry Value: docker. This key and value combination only retrieves hosts from the docker registry. | |
| repository | Any host repository | Retrieves only hosts from the specified repository. | Key: repository Value: alpine/openssl. This key and value combination only retrieves hosts from the alpine/openssl repository. | |
| Vulnerability | name | Any container image name | Retrieves only vulnerabilities from the specified container image name. | Key: name Value: docker.io. This key and value combination only retrieves vulnerabilities associated with docker.io container image. |
| registry | Any container image registry | Retrieves only vulnerabilities from the specified container image registry. | Key: registry Value: harbor. This key and value combination only retrieves vulnerabilities from the harbor container image registry. | |
| repository | Any container image repository. | Retrieves only vulnerabilities from the specified container image repository. | Key: repository Value: alpine. This key and value combination only retrieves vulnerabilities from the alpine container image repository. |
The option keys and values are case-sensitive as they are shown in this documentation.
APIs
The Aqua connector uses the Aqua Enterprise API. Specifically, it uses the following endpoints:
-
/api/v1/hosts -
/api/v1/login -
/api/v2/containers -
/api/v2/images/ -
/api/v2/images/names
Changelog
The Aqua connector has undergone the following changes:
3.0.2
- Added two new attributes, 'Exploitability' and 'Exploit type', in the Vulnerability Definition object.
3.0.0
- Initial Integration+ release.