Prerequisites

Before you can get started with IPAM Security Policy App (ISPA), you need the following:

• Google Chrome or Mozilla Firefox internet browsers

• Click here for Tufin Orchestration Suite version compatibility. The hardware and software requirements of ISPA are identical to those of the TOS version that is installed.

• Obtain from the Marketplace:

  • The latest installer file for the application

  • An evaluation license file

• In SecureTrack, create a user with Security Administrator level permissions. Log into SecureTrack with that user.

• Enable HTTPs access between ISPA and the SecureTrack server.

• ISPA retrieves subnet and attribute data using API, and the user with API credentials must have the following permissions to integrate with each IPAM:

  IPAM	Minimum Required Permissions
  InfoBlox	Read-only custom permissions role, which allows reading from extensibleattributedef and network endpoints
  efficientIP	Read-only custom permissions role, which allows reading from ip_block_subnet_count and ip_block_subnet_list endpoints
  BlueCat	API user user access type set to yes
  phpIPAM	User in the operators group