Integrations
Introduction
Integrations connect Bastion to your existing tools and services. Enable automated data collection, policy enforcement, and streamlined workflows.
Integration Categories
Identity Providers
Azure AD, Google Workspace - Sync users and manage access
Cloud Services
AWS, Azure, GCP, OVH, Scaleway, DigitalOcean - Infrastructure monitoring
Version Control
GitHub, GitLab, Azure DevOps, Bitbucket - Code security and SBOM
Why Integrate?
Automation Benefits
| Benefit | Description |
|---|---|
| Data Sync | Automatic user and asset import |
| Evidence Collection | Compliance evidence gathered automatically |
| Policy Enforcement | Security controls applied via integrations |
| Workflow Automation | Tickets, alerts, and actions triggered |
Manual vs. Integrated
| Aspect | Manual | Integrated |
|---|---|---|
| User Management | CSV import | Real-time sync |
| Evidence | Upload manually | Auto-collected |
| Tickets | Create manually | Auto-generated |
| Alerts | Email/Slack | Direct integration |
Integration Hub
Viewing Integrations
Navigate to Integrations to see:
- Available integrations
- Connected integrations
- Connection status
- Last sync time
Integration Status
| Status | Meaning |
|---|---|
| Connected | Active and syncing |
| Warning | Issues detected |
| Error | Connection failed |
| Not Connected | Available but not set up |
Connecting Integrations
General Process
Select Integration
Choose the integration to connect.
Authenticate
Complete OAuth flow or enter credentials.
Configure
Set up sync options and scope.
Test
Verify connection and data flow.
Enable
Activate the integration.
Authentication Methods
| Method | Description |
|---|---|
| OAuth | Authorize via provider |
| API Key | Enter API credentials |
| Service Account | Use service account |
| Certificate | Upload certificate |
Managing Integrations
Configuration
Each integration has settings:
- Sync frequency
- Data scope
- Feature toggles
- Credential management
Sync Settings
| Setting | Options |
|---|---|
| Frequency | Real-time, hourly, daily |
| Scope | All data, specific groups |
| Direction | One-way, two-way |
Testing Connections
Test integration health:
- Open integration
- Click Test Connection
- Review results
- Address any issues
Disconnecting
To remove an integration:
- Open integration
- Click Disconnect
- Confirm removal
- Data handling options shown
Disconnecting may remove synced data or disable features that depend on the integration.
Permissions
Required Permissions
Each integration requires specific permissions:
- Read - View data
- Write - Make changes
- Admin - Full access
Least Privilege
Request minimum necessary permissions:
- Review permission requests carefully
- Only enable needed features
- Regular permission audits
Troubleshooting
Common Issues
Connection Failed
- Verify credentials
- Check network connectivity
- Confirm API availability
- Review permission grants
Sync Not Working
- Check sync schedule
- Review error logs
- Verify data exists in source
- Check filter configuration
Missing Data
- Verify scope includes data
- Check filter settings
- Confirm permissions
- Review sync history
Integration Logs
View integration activity:
- Open integration
- Click Logs
- Review sync history
- Filter by status/date
Best Practices
Connect Core Integrations First
Start with identity provider and email. These enable the most features.
Review Permissions
Understand what access each integration requires before connecting.
Monitor Health
Check integration status regularly. Failed integrations mean missing data.
Keep Credentials Updated
Rotate API keys and update credentials before expiration.