ACE Quickstart Guide
New to ACE? This guide is designed to help you get started fast.
# | Step | Description |
---|---|---|
1 | Login to ACE | See instructions for first time access for the administrator, see Admin first time logging in. |
2 | Onboard cloud accounts to both Cloud Network Security and Cloud App Analyzer |
Add AWS accounts, Azure subscriptions, and Google Cloud projects. See Onboarding Accounts, Subscriptions and Projects. |
3 | Integrate ACE with ASMS |
Follow steps to establish a trust relationship and connect ACE with ASMS for integrated security management. For more details, see AlgoSec Cloud Enterprise - ASMS Integration |
4 | Set up access to ACE |
Manage access including users, API access keys, roles, Single Sign-On (SSO), and monitoring user activity within ACE. For more details, see Access Management. |
Set up Cloud Network Security
# | Step | Description |
---|---|---|
1 | Customize risk profiles |
ACE utilizes the activated risk profile to assess and calculate risks to onboarded accounts and assets. For instructions to customize risk profiles, see Manage Risk Profiles |
2 | Set up IaC Connectivity Risk Analysis |
The IaC Connectivity Risk Analysis security plugin platform scans code for vulnerabilities pre-deployment to the cloud, speeding up app delivery through a proactive stance in the CI/CD pipeline. Developers gain insight into risks with direct remediation steps in source control, eliminating the need for manual security reviews or application switching to continue their work. For details to set up and use, see IaC Connectivity Risk Analysis. |
Set up Cloud App Analyzer
# | Item | Description |
---|---|---|
1 | Enable threat management for your continuous delivery (CD) cycle |
Threat management rule sets that form the basis of Cloud App Analyzer's scanning mechanisms. For instructions how to set up, see Threat Management. For instructions to enable threat management for your continuous delivery (CD) cycle, see:
|
2 | Set up the Cloud App AnalyzerContinuous Integration (CI) Cycle Container Security |
ACE Cloud App Analyzer CI/CD Container Security solution provides an extensible security plug-in for dev team code repositories that perform an automated scan for Docker container pipelines. For details to set up and use, see Cloud App Analyzer CI/CD Container Security. |
3 | Set up access to Cloud App Analyzer | Manage access including users, API access keys, roles, Single Sign-On (SSO), and monitoring user activity within Cloud App Analyzer. For more details, see Access Management. |
4 | Set up integration with JIRA |
Configure Cloud App Analyzer to create a JIRA ticket every time there is a new alert. See Integrate with Jira. |
5 | Manage alerts by suppressing and unsuppressing them | See Suppress and Unsuppress Risks. |
6 | Remove Cloud App Analyzer resources | If you decide to stop using Cloud App Analyzer, you'll need to delete the resources it created during the onboarding process for GCP, Azure, and AWS. For more information, see Remove Cloud App Analyzer Resources. |
Resources & support
For further resource and support see also:
Item | Description |
---|---|
Release Notes |
Highlights new features in ACE and updates to documentation. For more details, see Release Notes. |
Known Issues |
Details current issues impacting Cloud Network Security. For more details, see Known Issues Affecting ACE. |
ACE Cloud Network Security API Reference |
Guides on managing network policy sets using Cloud Network Security's public APIs. For more details, see ACE API Reference. |
Field Reference per Rule Type |
Enumerates fields available for each rule type, tailored by vendor and security control specifics. For more details, see Field Reference per Rule Type. |
SaaS Security Practices |
Describes how AlgoSec SaaS Services, including Cloud Network Security, influence data management and security, including data handling within SaaS products. For more details, see AlgoSec SaaS Services Security Practices. |
Additional resources
Item | Description |
---|---|
AlgoPedia |
(requires user credentials) Visit AlgoSec's knowledge base, AlgoPedia, to access a comprehensive collection of resources, including how-to articles, best practices, troubleshooting tips, and detailed documentation, designed to enhance your understanding and maximize the value of ACE. See algopedia.algosec.com. |
AlgoSec Community |
(requires user credentials) Discover solutions, ask questions, share ideas, and engage in discussions about best practices. See community.algosec.com. |