Wiz is the leading cloud infrastructure security platform that enables organizations to rapidly identify and remove the most pressing risks in the cloud. Wiz uses an agentless approach—a single API connector per cloud and Kubernetes environment to scan deep within every cloud resource.

There are two ways to integrate with Wiz in Tines:

Calling the Wiz APIs from Tines

Wiz connect flow (recommended):

Login to your Tines tenant
Navigate to the team that will be using the API and click "Credentials"
Click "+ New Credential" and select "Wiz" and follow the prompts to connect.

Manual credential creation

This method is not recommended as the Wiz connect flow creates this credential with much less complexity. However, if you need to create this credential set manually, see the following steps below:

First, create a Wiz service account

Login to your Wiz account
Create a service account (see the Wiz documentation)
Copy the service account's "Client ID" and "Client Secret" to a text editor

Then, create a Wiz credential in Tines

Click "+ New Credential" and select "HTTP request"
Input the values for the Wiz credential
1. Name: wiz
2. Description: Optional
3. URL: https://auth.app.wiz.io/oauth/token
4. Content Type: Form
5. Method: post
6. Payload: Copy the below object and paste into the "Plain code" section:
```
{
  "audience": "wiz-api",
  "client_id": "insert_your_client_id_here",
  "client_secret": "<<secret>>",
  "grant_type": "client_credentials"
}
```
7. Secret: Your Client Secret
Click "Save"
Click "Run request" and double-click on the access_token key to copy the path.
Location of token from response: Paste the path to the token in the value pill, wiz.body.access_token
Metadata:
1. Paste in your API Endpoint URL from Tenant Info.
```
{
  "wiz_api_url": "paste in your wiz API url"
}
```
TTL(seconds): 120
Optional
1. Domains: Ensure this credential can only be used when making HTTP requests to specific domains
2. Access: What other teams can also use the API
Click "Save"

Your credential should look like the following:

Lastly, test the integration

Create a new Story
Click on "Templates"
Type "wiz issues" in the search bar and drag the "Get All Open Issues (First Call) in Wiz" template onto the storyboard
Click on the template and then click "Run"
If your call is successful, you will see a purple notification with the number 1

Receiving Webhooks from Wiz in Tines

First, create a Webhook action in Tines

Create a new Story
Drag a "Webhook" action onto the storyboard
In the "Build" tab on the configuration panel, copy the "Webhook URL"
Add a Tines integration to your Wiz tenant (see Wiz Documentation)
Once the Tines integration is configured, create a Tines Push integration in Wiz using the Webhook URL copied earlier (see Tines Push integration)

Lastly, test the integration

Manually trigger an action on an issue in Wiz for the Tines Integration created (see Run an action on an issue)
Open your story in Tines.
If your integration is correctly configured, you will receive a green notification with the number 1
(Recommended) After confirming the integration is working, add an Automation Rule in Wiz to automatically send webhooks to Tines for Wiz Issues, Vulnerabilities, Cloud Configuration Findings, etc. when they are generated (see Add an automation rule)

Read about our connect flows here.

More on creating credentials in Tines here.

You can also find a selection of Wiz stories in the story library.

CrowdStrike Authentication Guide

GitHub Authentication Guide

Armis Authentication Guide

Malwarebytes Authentication Guide

Digital Guardian Authentication Guide