Graphus-BMS Integration Guide

1. Overview

Graphus can be integrated with Kaseya's own BMS application (Business Management Solution) to create automated tickets from alerts generated in Graphus which will allow cyber analysts to take remedial action. This is the main objective of Graphus-BMS integration. Integrating Graphus with BMS is a simple process.

2. Prerequisite

Make sure to be logged in as an MME admin to access your single organization or you should be logged in as an MSP admin and be inside organizational view within Graphus. The menu items that you see on the left are organization related.

You can use an API user in BMS to integrate Graphus with BMS. For more information, see Dedicated Integration Account in PSA.

To integrate Graphus with BMS, do the following in Graphus:

  1. Go to Settings page > SIEM/Ticketing Integration.
  2. Make sure the button is turned on. Do the following:

    Event Format: Select one of the two formats for the integration to happen.

    Integration Type: Select BMS from the dropdown.

    Base URL: Enter the base URL of the application in question. In this case, it is BMS. The URL will be in the format https://bms.kaseya.com or bmsemea.kaseya.com or bmsapac.kaseya.com.

    User Name: Enter your username that you use to log into BMS.

    Password: Enter the password that you use to log into BMS.

    Tenant ID: Enter your company name.

    Account ID: Account ID is a unique identifier of an organization within a tenant in BMS. When you start typing the Account ID in this SEARCHBOX, all matching values will be auto-populated from which you can select the most appropriate value.                                                                                   

    Account Location ID: Click this field to see the default value that is populated based on the above chosen Account ID. Click again to see all the values that are populated based on the above chosen Account ID and select the most appropriate value.

    Source ID: Click this field to see the default values available. If needed, click on the drop down menu to see all the available values and select the most appropriate value.

    Type ID: Click this field to see the default values available. If needed, click on the drop down menu to see all the available values and select the most appropriate value.

    Priority ID: Click this field to see the default values available. If needed, click on the drop down menu to see all the available values and select the most appropriate value.

    Status ID: Click this field to see the default values available. If needed, click on the drop down menu to see all the available values and select the most appropriate value.

    Queue ID: Click this field to see the default values available. If needed, click on the drop down menu to see all the available values and select the most appropriate value.

  3. Click Test Connection. If the connection is successful, you will see a message which says, “Connection Successful. Sample Ticket Successfully published.”
  4. Click Save Changes. The integration is now complete.

    SIEM_ticketing_section.PNG

    After integration, you will be able to see tickets generated from Graphus alerts in BMS as shown below.

    BMS_graphus_alerts_page.PNG
Was this article helpful?
0 out of 0 found this helpful
Have more questions? Contact us