Skip to main content

Wiz proof types

Note

Hyperproof connects to many third-party systems that frequently change, including the system interface. Contact your System Administrator or the third-party provider for assistance meeting the requirements to integrate with Hyperproof and collect the proof you need.

When you create a Hypersync between Hyperproof and Wiz, you can automatically collect proof based on the following services:

  • List of Users

  • List of Vulnerabilities

Additional documentation

Note

You only need to connect Hyperproof to the app once, and then you can create as many Hypersyncs as you need. Additionally, you can create multiple Hypersyncss for a single control or label.

Configuring Wiz for a Hypersync user

  1. Create a Wiz Client ID and Client Secret.

  2. In the Wiz console, select Settings > Service Accounts > Add Service Account. Configure the following permissions:

    Note

    Be sure to create a new Service Account to configure the correct permissions. When editing an existing Service Account, the required permissions aren't available.

    • Pull Users - read: users

    • Get Report Download URL and Status - read: reports

    • Update Vulnerabilities Report - update: reports

    • Create Vulnerabilities Report - create: reports

  3. Obtain the Subscription External ID for the List of Vulnerabilities proof criteria by selecting Settings > Subscriptions.

  4. Under the relevant subscription, copy the external ID string

    Some valid examples of Subscription External ID include:

    • Amazon Web Services (AWS): account number

    • Google Cloud Portal (GCP): project name

    • Oracle Cloud Infrastructure (OCI): compartment OCID

In this section: