Skip to main content

Get Started with IaC Security

Connect iacbot to your git provider and start securing your infrastructure today. It takes just a minute or two.

Get Started with GitHub

Prerequisites

To install iacbot, you need admin-level access to all your repositories. You can select a few or all the repositories for monitoring. You can also install iacbot directly from the GitHub marketplace.

  1. Go to the Lacework IaC Security page.

  2. Select the GitHub as your provider and continue.

  3. Go to https://github.com/apps/iacbot and choose Install.

    Install iacbot

  4. Select the Organization for which you want to install iacbot.

    Where do you want to install iacbot

  5. Review and authorize iacbot for a selected few or all repositories.

    Install and authorize iacbot

  6. Accept Terms of Service.

At this point, iacbot is analyzing your repos. It looks for Terraform, CloudFormation, and Kubernetes manifests. When it finds IaC source code, it initiates a static analysis of your code.

As soon as the first assessment is complete, you should see this message:

You successfully imported your GitHub repositories into Lacework IaC Security

Get Started with GitLab

Prerequisites

To install iacbot, you need a service account with Owner/Maintainer access to all your repositories. IaC Security also integrates with CI/CD pipelines as well as GitHub Enterprise on-prem. Please contact your Lacework representative for this custom deployment.

  1. Go to the Lacework IaC Security page.

  2. Select GitLab as your provider and continue.

  3. Log in to GitLab.

    GitLab login

  4. Accept Terms of Service.

  5. As soon as you accept, you should see the following page to configure the service account access token.

    Connect GitLab

At this point, iacbot is analyzing your repos. It looks for Terraform, CloudFormation, and Kubernetes manifests. When it finds IaC source code, it initiates a static analysis of your code.

As soon as the first assessment is complete, you should see this message:

You successfully imported your GitLab repositories into Lacework IaC Security

Get Started with Bitbucket

Prerequisites

To install iacbot, you need admin-level access to all your repositories.

  1. Go to the Lacework IaC Security page.

  2. Select Bitbucket as your provider and continue.

  3. Log in to Bitbucket.

    Bitbucket login

  4. Confirm iacbot access to your Bitbucket account.

    Confirm IaCBot with Bitbucket access

  5. Select the workspace to install the Lacework IaC Security app.

    Lacework IaC Security app installation

  6. Accept Terms of Service.

    Lacework IaC ToS Page

  7. As soon as you accept, you should see the following page to connect Bitbucket account with Lacework IaC.

    Connect Bitbucket

At this point, iacbot is analyzing your repos. It looks for Terraform, CloudFormation and Kubernetes manifests. When it finds IaC source code, it initiates a static analysis of your code.

As soon as the first assessment is complete, you should see this message:

You successfully imported your Bitbucket repositories into Lacework IaC Security