Cloudflare
Overview
Firefly can ingest DNS and CDN configurations from Cloudflare. Provide your Cloudflare account email and an API token with read permissions to your zones. Firefly will list DNS records or configurations as part of inventory.
Prerequisites
A Cloudflare account with administrative access
Ability to generate API tokens
Access to Cloudflare API endpoints
API token with read permissions to your zones
Setup Procedure
Log in to your Cloudflare account.
Create an API token:
Select the "Read all resources" template
Copy the token
In Firefly:
Select Settings > Integrations
Select Add New > Cloudflare
Enter a descriptive name in the Nickname field
Paste the token into the API Token field
Select Next
Configuration Details
Supports monitoring of:
DNS records
CDN configurations
Zone settings
SSL/TLS configurations
Regular scanning of Cloudflare assets
Integration with Firefly's inventory management
Support for policy enforcement on Cloudflare resources
Best Practices
Use a dedicated API token for Firefly integration
Regularly rotate API tokens for security
Monitor API token usage in Cloudflare
Keep track of which Cloudflare assets are being monitored
Review and update policies as needed
Maintain proper access controls in Cloudflare
Ensure API token has minimum required permissions
Troubleshooting
For API token issues:
Verify API token permissions
Check if the token has expired
Ensure the token has the correct access level
Verify token has access to required zones
For asset discovery issues:
Verify the integration is active in Firefly
Check if the API token has access to the required resources
Review Firefly integration logs
Verify Cloudflare zone configurations
For policy enforcement issues:
Verify the asset types are supported
Check policy configuration
Review Firefly policy logs
Ensure Cloudflare resources are properly tagged
Last updated
Was this helpful?