ACE Quickstart Guide

New to ACE? This guide is designed to help you get started fast.

#	Step	Description
1	Login to ACE	See instructions for first time access for the administrator, see Admin first time logging in.
2	Onboard cloud accounts to both Cloud Network Security and Cloud App Analyzer	Add AWS accounts, Azure subscriptions, and Google Cloud projects. See Onboarding Accounts, Subscriptions and Projects.
3	Integrate ACE with ASMS	Follow steps to establish a trust relationship and connect ACE with ASMS for integrated security management. For more details, see AlgoSec Cloud Enterprise - ASMS Integration
4	Set up access to ACE	Manage access including users, API access keys, roles, Single Sign-On (SSO), and monitoring user activity within ACE. For more details, see Access Management.

Set up Cloud Network Security

#	Step	Description
1	Customize risk profiles	ACE utilizes the activated risk profile to assess and calculate risks to onboarded accounts and assets. For instructions to customize risk profiles, see Manage Risk Profiles
2	Set up IaC Connectivity Risk Analysis	The IaC Connectivity Risk Analysis security plugin platform scans code for vulnerabilities pre-deployment to the cloud, speeding up app delivery through a proactive stance in the CI/CD pipeline. Developers gain insight into risks with direct remediation steps in source control, eliminating the need for manual security reviews or application switching to continue their work. For details to set up and use, see IaC Connectivity Risk Analysis.

Step

Description

Customize risk profiles

ACE utilizes the activated risk profile to assess and calculate risks to onboarded accounts and assets.

For instructions to customize risk profiles, see Manage Risk Profiles

Set up IaC Connectivity Risk Analysis

The IaC Connectivity Risk Analysis security plugin platform scans code for vulnerabilities pre-deployment to the cloud, speeding up app delivery through a proactive stance in the CI/CD pipeline. Developers gain insight into risks with direct remediation steps in source control, eliminating the need for manual security reviews or application switching to continue their work.

For details to set up and use, see IaC Connectivity Risk Analysis.

Set up Cloud App Analyzer

#	Item	Description
1	Enable threat management for your continuous delivery (CD) cycle	Threat management rule sets that form the basis of Cloud App Analyzer's scanning mechanisms. For instructions how to set up, see Threat Management. For instructions to enable threat management for your continuous delivery (CD) cycle, see: For AWS ECR: Enable Threat Management on AWS ECR For Azure ACR: Enable Threat Management on Azure ACR For GCP AR: Enable Threat Management on GCP AR
2	Set up the Cloud App AnalyzerContinuous Integration (CI) Cycle Container Security	ACE Cloud App Analyzer CI/CD Container Security solution provides an extensible security plug-in for dev team code repositories that perform an automated scan for Docker container pipelines. For details to set up and use, see Cloud App Analyzer CI/CD Container Security.
3	Set up access to Cloud App Analyzer	Manage access including users, API access keys, roles, Single Sign-On (SSO), and monitoring user activity within Cloud App Analyzer. For more details, see Access Management.
4	Set up integration with JIRA	Configure Cloud App Analyzer to create a JIRA ticket every time there is a new alert. See Integrate with Jira.
5	Manage alerts by suppressing and unsuppressing them	See Suppress and Unsuppress Risks.
6	Remove Cloud App Analyzer resources	If you decide to stop using Cloud App Analyzer, you'll need to delete the resources it created during the onboarding process for GCP, Azure, and AWS. For more information, see Remove Cloud App Analyzer Resources.

Resources & support

For further resource and support see also:

Item	Description
Release Notes	Highlights new features in ACE and updates to documentation. For more details, see Release Notes.
Known Issues	Details current issues impacting Cloud Network Security. For more details, see Known Issues Affecting ACE.
ACE Cloud Network Security API Reference	Guides on managing network policy sets using Cloud Network Security's public APIs. For more details, see ACE API Reference.
Field Reference per Rule Type	Enumerates fields available for each rule type, tailored by vendor and security control specifics. For more details, see Field Reference per Rule Type.
SaaS Security Practices	Describes how AlgoSec SaaS Services, including Cloud Network Security, influence data management and security, including data handling within SaaS products. For more details, see AlgoSec SaaS Services Security Practices.

Additional resources

Item	Description
AlgoPedia	(requires user credentials) Visit AlgoSec's knowledge base, AlgoPedia, to access a comprehensive collection of resources, including how-to articles, best practices, troubleshooting tips, and detailed documentation, designed to enhance your understanding and maximize the value of ACE. See algopedia.algosec.com.
AlgoSec Community	(requires user credentials) Discover solutions, ask questions, share ideas, and engage in discussions about best practices. See community.algosec.com.