PagerDuty

Overview

Firefly integrates with PagerDuty to pull in information about your incidents, services, and on-call schedules as "assets". This means in your Firefly Inventory, you'll see PagerDuty services and incidents listed (with their configurations) just like cloud assets. You can then enforce IaC or policies on them as well (for example, ensuring all services follow a naming convention or have proper escalation policies).

Prerequisites

• A PagerDuty account with administrative access

• A Read-Only API Access Key

• (Optional) A User Token REST API Key for enhanced functionality

• Access to PagerDuty API endpoints

• Ability to generate API keys

Setup Procedure

1. Log in to your PagerDuty account

2. Create a Read-Only API Access Key:

   • Navigate to PagerDuty API Access Keys

   • Generate a new Read-Only API Access Key

   • Copy the key for use in Firefly

3. (Optional) Generate a User Token REST API Key:

   • Navigate to PagerDuty User Token REST API Keys

   • Generate a new User Token

   • Copy the token for use in Firefly

4. In Firefly:

   • Select Settings > Integrations > Add New > PagerDuty

   • Enter a descriptive name in the Nickname field

   • Paste your Read-Only API Access Key into the API Access Key field

   • (Optional) Paste your User Token into the User Token field

   • Select Next

Configuration Details

• Firefly scans every 8 hours by default for SaaS data

• Your PagerDuty services and incidents list will stay updated automatically

• You can enforce IaC or policies on your PagerDuty assets

• The integration supports both Read-Only API Access Keys and User Token REST API Keys for enhanced functionality

• Supports monitoring of:

  • Services

  • Incidents

  • On-call schedules

  • Escalation policies

Best Practices

1. Use dedicated API keys for Firefly integration

2. Regularly rotate API keys for security

3. Monitor API key usage in PagerDuty

4. Keep track of which PagerDuty assets are being monitored

5. Review and update policies as needed

6. Maintain proper access controls in PagerDuty

7. Consider using User Token REST API Key for enhanced functionality

Troubleshooting

1. For API key issues:

   • Verify API key permissions

   • Check if the key has expired

   • Ensure the key has the correct access level

   • Verify both Read-Only and User Token keys if using enhanced functionality

2. For asset discovery issues:

   • Verify the integration is active in Firefly

   • Check if the API key has access to the required resources

   • Review Firefly integration logs

   • Verify PagerDuty service configurations

3. For policy enforcement issues:

   • Verify the asset types are supported

   • Check policy configuration

   • Review Firefly policy logs

   • Ensure PagerDuty resources are properly tagged