Versions Compared

Old Version 1

changes.mady.by.user Nathaniel Wilkins

Saved on

compared with

New Version 2

changes.mady.by.user Alban (Unlicensed)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

To onboard a new MuleSoft account into Data Theorem's API security product you must first invite the cloud@datatheorem.comaccount to your environment and setup the proper access rights for the accountcreate a custom role and setup a mulesoft analyzeraccount that can access your environment.

This account will allow our services to discover and analyze (with limited read access) your configuration, resources, and APIs.

Setting up a Custom Role

...

  1. Login into your MuleSoft Account through the AnypointPlatformportal

  2. Under the title Management Center select Access Management

    1. Note: If you can’t find Access Management then you might not have access to set this up.

  3. Select Roles from the left side menu

  4. Click the Add role button

  5. In the dialog box for the Role Name field enter

...

    1. DataTheoremAnalyzer

  2. In the dialog box for the Role Description field enter

    1. Data Theorem custom role to

...

    1. analyze and inspect environments

  2. Once the role has been created, Select the API Manager tab under Permissions

  3. Select the environment from the Add environment by name field for the environment you want the scanner analyzer to have access to scan

    1. Note: You’ll have to do steps 8-10 for each environment you want the

...

    1. analyzer to have access to

...

    1. .

  2. Once an environment has been selected, Select the following permissions from the Select access field

    1. View APIs Configuration

    2. View Contracts

    3. View Policies

  3. After permissions have been selected, Click the Blue Plus Icon on the right hand side

    1. Image Added

      Note: This page should now look something like the following screenshot.

  4. Select the Runtime Manager tab under Permissions in your custom role.

...

  2. In the first section there is a table with one heading marked as Permissions
    select the following permissions from the Select access field.

    1. Cloudhub Network Viewer

  3. In the second section there is a table with headings Environment and Permissions
    select the environment from the Add environment by name field for the environment you want the analyzer to have access to.

    1. Note: You'll have to do steps 13-15 for each environment you want the analyzer to have access to.

  4. Once an environment has been selected, select the following permissions from the Select access field.

    • Read Alerts

    • Read Applications

    • Read Servers

    • Download Applications

  5. After permissions have been selected, click the Blue Plus Icon on the right hand side.

  6. Next we move on to the Design Center where we have to setup a few more permissions, Select the Design Center tab under Permissions

  7. Select the environment from the Add environment by name field for the environment you want the scanner analyzer to have access to scan

    1. Note: You’ll have to do steps

...

    1. 17-

...

    1. 19 for each environment you want the

...

    1. analyzer to have access to

...

    1. .

  2. Once an environment has been selected, Select the following permissions from the Select access field

    1. Design Center Developer

  3. After permissions have been selected, Click the Blue Plus Icon on the right hand side

    1. Image Added

      Note: This page should now look something like the following screenshot

...

  2. At this point all permissions have been properly setup! 

  3. Proceed to

...

  1. creating the

...

  1. account that will be used by Data Theorem’s integration, as shown below.

...

Creating Data Theorem’s Account

After creating the custom role we need to invite the MuleSoft scanner so create the account that will be used by Data Theorem can to access your environment. Once done completed, you should have the following information:

  • Account Username

  • Account Password

  • Organization ID

To invite create the MuleSoft Scanner account, open a new tab and:

  1. Login into your MuleSoft Account through the the AnypointPlatform portal

  2. Under the title title Management Center select Center select Access Management

    1. Note:

...

    1.  If you can’t

...

    1. find Access

...

    1. Management then you might not have access to set this up.

  2. Select Users Select Users from the left side menu

  3. Click the the Invite user user button

    1. Note: If this button isn’t available you have to enable non-SSO users.

...

    1. See Enable non-SSO Users Documentation.

  2. In the dialog box for the Email addresses field enter

...

  1. an email account that you have access to. Make sure to write down the Account Username to use later

  2. For the Role field enter the custom role setup earlier

...

    1. DataTheoremAnalyzer

  2. Click Send invitation

  3. Once invited we only need your you'll need to finish creating the account with the invitation sent. Make sure to write down the Account Password to use later

  4. Once the account is setup we will need the Organization ID this can be found by navigating to the AnypointPlatform portal

  5. Once on the portal you will be redirected to a url that looks like the following

    1. https://anypoint.mulesoft.com/home/organizations/

...

    1. 1453f13-52b8-4454-86e0-f92f8a6ae6a8

...

  2. Copy out the bolded portion after https://anypoint.mulesoft.com/home/organizations/ this is your Organization ID

  3. Send the created account credentials to support@securetheorem.com.

Extra References