Workload Security Webhook Example for Slack
Suggest changes
PDFs
Webhooks allow users to send alert notifications to various applications using a customized webhook channel. This page provides an example for setting up webhooks for Slack.
This page refers to third-party instructions, which are subject to change. Refer to the Slack documentation for the most up-to-date information.
Slack Example
-
Go to https://api.slack.com/apps and Create a new App. Give it a meaningful name and select a Workspace.
-
Go to Incoming Webhooks, click on Activate Incoming Webhooks, select Add New Webhook, and select the Channel on which to Post.
-
Copy the Webhook URL. This URL will be given when creating a Workload Security webhook.
Create Workload Security Slack Webhook
-
Navigate to Admin > Notifications and select the Workload Security Webhooks tab. Select + Webhook to create a new webhook.
-
Give the webhook a meaningful name.
-
In the Template Type dropdown, select Slack.
-
Paste the URL copied from above.
Notifications via webhook
-
To notify on events via webhook, navigate to Workload Security > Policies. Click on +Attack Policy or +Warning Policy.
-
Enter a meaningful policy name.
-
Select required Attack Type(s), Devices to which the policy should be attached, and required Actions.
-
Under the Webhooks Notifications dropdown, select the required webhooks. Save the policy.
Note: Webhooks can also be attached to existing policies by editing them.
