Skip to main content
Skip table of contents

Wiz Security

What is Wiz?

Wiz analyzes all layers of the cloud stack to identify high-risk attack vectors to be prioritized and remediated.

Why Should You Use the Wiz Connector?

The Wiz connector provides visibility into the assets in your environment. You can use this visibility to:

  • ensure assets are managed per your security policies

  • derive relationships between assets, users, applications, and data

How Does This Connector Work?

Lucidum executes read-only requests to the Wiz REST API and ingests only meta-data about Wiz devices. Lucidum does not retrieve any data stored on your assets.

Configuring the Connector in Lucidum

Field

Description

Example

URL

The URL for the Wiz API.

https://api.us13.app.wiz.io/graphql

Client ID

Client ID for a Wiz account that has read access to API data.

Client Secret

Client secret for a Wiz account that has read access to API data.

Source Documentation 

Creating a Service Account for Wiz Security

Before configuring the Wiz Security connector in Lucidum, you must first create an API Key. Lucidum will use the API key to access the Wiz Security API.

To get the Wiz client ID and client secret:

  1. Go to Settings > Service Accounts.

  2. Click on Add Service Account and name the new service account, e.g. "Lucidum".

  3. Optionally you can narrow the scope of this service account to specific projects.

  4. Choose the permission read:resources and click Add Service Account.

  5. Copy the CLIENT SECRET (you will not be able to copy it after this stage).

  6. Copy the CLIENT ID (it will be visible under the service accounts page).

Required Permissions

Object

Permissions

 Permisson

read:resources

API Documentation

https://app.wiz.io/login?redirect=%2Fwiz-docs (needs login)

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.