Configuring Integration Level Alerts

Learn how to set up alerts on Nightfall for Github

Nightfall sends alerts in real-time to the channels or platforms you configure. You can configure the following alerts:

  • Slack Alerts

  • Microsoft Teams

  • Webhook

  • Jira Tickets

  • Email

The Nightfall for Google Drive integration allows you to configure alerts at the policy level and also at the integration level.

When you configure alert settings at the integration level, the alert settings apply to all the policies, created for the Nightfall for Google Drive integration. However, when you configure alert settings specifically for a policy, which is created in the Google Drive integration, the alert settings are applicable only for that specific policy.

This document explains how to configure alerts at the integration level. To learn about how to configure alerts at the policy level, read this document.

Prerequisites

  • To use Slack as an alert platform, you must first perform the required Slack configurations. You can refer to this document to learn more about how to configure Slack as an Alert platform.

  • To use Microsoft Teams as an alert platform, you must have the Nightfall for Microsoft 365 integration enabled.

  • To use Webhook as an alert platform, you must first perform the required Webhook configurations. You can refer to this document to learn more about how to configure Webhook as an Alert platform.

  • To use JIRA as an alert platform, you must have the DLP for the JIRA app installed from the Atlassian Marketplace. You can read more about the DLP for JIRA integration here.

Configure Alerts at the Integration Level

You can configure alerts at the integration level once you have installed the Nightfall for Google Drive integration.

To configure alerts at the integration level:

  1. Navigate to the Nightfall for Google Drive integration.

  2. Scroll down to the Alerting section.

  3. Nightfall provides you with the following alert methods.

    • Slack: Enter the name of the Slack channel to which the violation notifications from this integration must be directed and click Save.

    • Teams: Select the Team and the Channel(s) within that team to which the violation notifications must be sent.

  • Email: Enter the Email ID of the recipient to whom the violation notification must be sent and click Save.

  • Webhook: Click + Webhook to add Webhook URL. Click Test to test the connection to the Webhook URL. HTTP headers. Click Save.

When you configure alerts to a Webhook, Nightfall AI sends occasional posts to:

  • To validate that the Webhook is properly configured before the policy is saved.

  • Periodically thereafter to ensure that the Webhook is still valid.

The response to the test Webhooks is 200 status code if successful.

An example of Webhook request is as follows.

{
  "service": "nightfall",
  "test": true,
  "timestamp": "2024-03-07T23:18:39Z"
}

This is part of alert event consumption and can be ignored.

JIRA: Select the JIRA project, issue type, enter comments, and click Save changes.

Configure End-User Notification

When a Violation occurs, Nightfall sends a notification to the end-user whose actions triggered the violation. While notifying the end-user, Nightfall also sends a text message. You can draft the text message to be sent to the end-user. This message applies to all the policies. Click Save changes once done.

PreviousInstalling Nightfall for Google DriveNextConfiguring Policies

Last updated