Part of my responsibility as a Sales Engineer at Plixer is to find new and exciting ways to integrate our tools with those that our customers already use. Often these tools have APIs that let us do this easily! We’ve already created a few other integrations with SolarWinds and have recently developed integration with their IPAM module.
Why Set Up IPAM Integration?
IP Address Management (or IPAM) is a tool designed to help you manage what IP addresses are in use on the network, as well as what services or groups they are a part of. All this additional metadata can supplement any data Scrutinizer is collecting. This will help increase visibility and awareness of how different segments on the network communicate with each other.
Setting Up the SolarWinds Integration:
Setting up the IPAM Integration is easy, but we’ll need a couple of things first:
- SSH access to Scrutinizer
- Internet/SFTP connection to Scrutinizer
- SolarWinds login
- Read-only access to the IPAM module
Once you have all of the above, follow the instructions below to get it deployed!
- SSH to the Scrutinizer server and download the compiled SolarWinds integration binary:
- Change permissions on the file
- chmod 755 solarwinds_ipam_import.run
- Execute the file and follow the on-screen prompt:
- Once finished, you should see some output showing the groups that were properly imported:
If you need to change the Server IP or User/Pass you can remove the .Solarwinds.ini file that is created in the same directory as the binary and re-run it.
Using Your Newly Imported IPAM Groups:
Now you have some new IP Groups within Scrutinizer (you can see them from Admin -> Definitions -> IP Groups). With these new IP Groups come some new report types:
- Pair IP Group > IP Group
- Src/Dst > IP Groups
These reports can be extremely helpful for large networks with thousands of groups, since you won’t have to manage or update them in multiple tools. Management can also get an idea very quickly of which groups are consuming links, using particular apps, or acting suspicious.
Using IPAM for Security
Besides the new report types, Scrutinizer will also add any relevant group information to the Alarms tab. This makes it very easy to tell if a particular segment of the network is experiencing issues or might have malware trying to move laterally on the network.
More 3rd-Party Integrations
Hopefully, this integration helps you and your team add a lot of context to the metadata that Scrutinizer is collecting. If you have any other integrations you would like to see or want more information on Scrutinizer sign up for our weekly demo here.