Integrations Overview
Containment.AI integrates with your existing security infrastructure to provide comprehensive AI governance. This guide covers available integrations and how they work.
Available Integrations
Core Integrations
| Integration | Purpose | Plans |
|---|---|---|
| Chrome Extension | Browser-level policy enforcement | All |
| SIEM | Security event forwarding | Pro, Enterprise |
| MDM | Device management deployment | Pro, Enterprise |
| Site Controls | Per-site policy overrides | Pro, Enterprise |
Identity Providers
| Integration | Purpose | Plans |
|---|---|---|
| SSO | Single sign-on authentication | Enterprise |
| SCIM | User provisioning/deprovisioning | Enterprise |
Integration Status
Check integration health at Integrations:
| Status | Indicator | Meaning |
|---|---|---|
| Connected | 🟢 Green | Working normally |
| Degraded | 🟡 Yellow | Partial issues |
| Disconnected | 🔴 Red | Not working |
| Not Configured | ⚪ Gray | Setup needed |
Setting Up Integrations
General Process
- Navigate to Integrations
- Find the integration you want
- Click Configure or Connect
- Follow the setup wizard
- Test the connection
- Enable in production
Requirements
Most integrations require:
- Admin access to both systems
- API keys or OAuth credentials
- Network connectivity
- Appropriate permissions
Data Flow
Outbound Data
What Containment.AI sends to integrations:
- Alert notifications
- Audit events
- Usage metrics
- Health status
Inbound Data
What integrations send to Containment.AI:
- User directory (SCIM)
- Authentication (SSO)
- Device status (MDM)
Privacy
Integration data handling:
- Content is never shared
- Metadata only where needed
- Compliant with privacy requirements
Authentication
API Keys
Some integrations use API keys:
- Generate in integration settings
- Rotate regularly
- Store securely
OAuth
Others use OAuth flow:
- Authorize in the connected system
- Tokens managed automatically
- Re-authorize if expired
SAML/OIDC
Identity integrations use:
- SAML 2.0 for SSO
- OIDC for modern auth
- Standard protocols
Webhooks
Receiving Webhooks
Configure external systems to send data:
- Get your webhook URL from integration settings
- Configure the external system
- Test with sample data
Sending Webhooks
Configure Containment.AI to send events:
- Click Add Webhook
- Enter destination URL
- Select events to send
- Add authentication headers
- Test and save
Testing Integrations
Connection Test
Verify basic connectivity:
- Click Test Connection
- View test results
- Troubleshoot if needed
Data Test
Send test data:
- Click Send Test Event
- Check the receiving system
- Verify data format
End-to-End Test
Full workflow testing:
- Trigger a policy
- Watch the alert flow
- Verify in connected systems
Troubleshooting
Common Issues
Connection Refused
- Check firewall rules
- Verify URL is correct
- Confirm network access
Authentication Failed
- Rotate API keys
- Re-authorize OAuth
- Check credentials
Data Not Appearing
- Verify event selection
- Check data format
- Review logs
Logs
View integration logs:
- Open integration settings
- Click Logs tab
- Filter by status/date
- Review error details
Best Practices
Security
- Use least privilege
- Rotate credentials regularly
- Monitor integration health
Reliability
- Set up alerts for failures
- Have fallback plans
- Test periodically
Documentation
- Document all integrations
- Note credentials location
- Track changes
Next Steps
- Chrome Extension - Core enforcement
- SIEM Integration - Security monitoring
- MDM Integration - Device deployment
- Site Controls - Per-site rules