NS1

Overview

Firefly integrates with NS1 to pull in information about your DNS records and zones as "assets". This means in your Firefly Inventory, you'll see NS1 DNS records listed (with their configurations) just like cloud assets. You can then enforce IaC or policies on them as well (for example, ensuring all DNS records follow a naming convention).

Prerequisites

  • An NS1 account with administrative access

  • An NS1 API key with appropriate permissions

  • Access to NS1 API endpoints

  • Ability to manage API keys

Setup Procedure

  1. Log in to your NS1 account

  2. Create an API Key by following the instructions in the NS1 API Key Management Guide

  3. In Firefly, select Settings > Integrations

  4. Select Add New > NS1

  5. Enter a descriptive name in the Nickname field

  6. Copy and paste your API key into the API Key field

  7. Select Next

Configuration Details

  • Firefly scans every 8 hours by default for SaaS data

  • Your NS1 DNS records list will stay updated automatically

  • You can enforce IaC or policies on your NS1 assets

  • Supports monitoring of:

    • DNS records

    • DNS zones

    • Record configurations

    • Zone settings

Best Practices

  1. Use a dedicated API key for Firefly integration

  2. Regularly rotate API keys for security

  3. Monitor API key usage in NS1

  4. Keep track of which NS1 assets are being monitored

  5. Review and update policies as needed

  6. Maintain proper access controls in NS1

  7. Ensure API key has minimum required permissions

Troubleshooting

  1. For API key issues:

    • Verify API key permissions

    • Check if the key has expired

    • Ensure the key has the correct access level

    • Review NS1 API key documentation

  2. For asset discovery issues:

    • Verify the integration is active in Firefly

    • Check if the API key has access to the required resources

    • Review Firefly integration logs

    • Verify NS1 zone configurations

  3. For policy enforcement issues:

    • Verify the asset types are supported

    • Check policy configuration

    • Review Firefly policy logs

    • Ensure NS1 resources are properly tagged

Last updated

Was this helpful?