Connecting to external security scanning tools and platforms by using plug-ins

Edit online

IBM® Guardium® Cryptography Manager empowers users to identify IT assets and their corresponding cryptographic objects through its robust plug-ins framework. This framework includes a set ready-to-use plug-ins that are available on the IBM Passport Advantage® portal and also supports the creation of custom plug-ins for platforms that do not have native integration.

Types of plug-ins

There are two types of plug-ins

Available plug-ins

The following plug-ins are provided with Guardium Cryptography Manager.
  • Amazon Web Services
  • Google cloud platform
  • Microsoft Azure
  • Rapid7 InsightVM
  • Sectigo Certificate Manager
  • Tenable Security Center
  • Venafi TLS Protect

These plug-ins enhance Guardium Cryptography Manager by enabling seamless integration and centralized management of cryptographic assets across your IT environment.

About plug-ins

Plug-ins are modular components that enable integration with third-party security scanning tools and external platforms. They act as bridge between the external security systems. These plug-ins helps achieve the following:
  • Discover cryptographic assets from multiple sources.
  • Convert vendor-specific data into a standardized format used by Guardium Cryptography Manager.
  • Extend the Guardium Cryptography Manager platform’s functionality without modifying the core product code.

Plug-in workflow

Any plug-in used to connect Guardium Cryptography Manager with an external platform follows these steps:
  1. Download the available plug-in from the IBM Passport Advantage portal or develop a new plug-in.
  2. Install the plug-in on Guardium Cryptography Manager. See Installing plug-ins topic.
  3. Integrate the external system with Guardium Cryptography Manager. See Integrating plug-ins topic.
  4. Discover plug-in related IT assets and associated cryptographic objects. See Managing plug-in discovery profile.