: Onboard a monday.com App to SSPM
Focus
Focus

Onboard a monday.com App to SSPM

Table of Contents

Onboard a monday.com App to SSPM

Connect a monday.com instance to SSPM to detect posture risks.
For SSPM to detect posture risks in your monday.com instance, you must onboard your monday.com instance to SSPM. Through the onboarding process, SSPM logs in to monday.com using administrator account credentials. SSPM uses this account to scan your monday.com instance for misconfigured settings. If there are misconfigured settings, SSPM suggests a remediation action based on best practices.
To onboard your monday.com instance, you complete the following actions:

Collect Information for Connecting to Your monday.com Instance

To access your monday.com instance, SSPM requires connection information. During the onboarding process, you specify the following required and optional information.
ItemDescription
EmailThe login email address of a monday.com administrator.
(Required Permissions) You must supply SPPM with Admin credentials to your monday.com account.
PasswordThe password of the monday.com administrator.
Account DomainThe custom domain for your monday.com account. After you log in to monday.com, this domain is part of your monday.com URL in the format <account_domain>.monday.com.
MFA Secret Key(Optional) A key that is used to generate one-time passcodes for multi-factor authentication.
As you complete the following steps, make note of the values of the items described in the preceding table. You will need to enter these values during onboarding to access your monday.com instance from SSPM.
  1. Identify the monday.com administrator whose credentials you will supply to SSPM.
    (Required Permissions) You must supply SPPM with Admin credentials to your monday.com account.
  2. Identify your monday.com account domain.
    After you log in to monday.com, the instance host name is a unique subdomain included in the monday.com URL. The URL format is <account_domain>.monday.com.
    You can also identify your account domain from your profile.
    1. Open a web browser and go to the monday.com login page at auth.monday.com/auth/login_monday.
    2. Log in to the administrator account that you identified earlier.
    3. Navigate to the Administration page. To navigate to the Administration page, locate your account avatar and select <account-avatar>Administration.
    4. On the Administration page, select GeneralProfile.
      The Account URL (Web Address) field shows your account domain.
  3. (Optional) Generate and copy an MFA secret key.
    MFA provides an extra layer of security when accessing the monday.com administrator account. To enable this extra layer of security, you must configure the administrator account for MFA that uses time-based one-time passcodes.
    These one-time passcodes are generated from authenticator apps by using an MFA secret key. The key is a shared secret between monday.com and the authenticator app for generating matching passcodes for verification. Like an authenticator app, SSPM will use the MFA secret key for passcode generation.
    1. Decide which authenticator app you will use and download it to your cellphone. You can use any authenticator app that can generate time-based one-time passcodes (TOTP), such as Microsoft Authenticator or Google Authenticator.
    2. Open a web browser and go to the monday.com login page at auth.monday.com/auth/login_monday.
    3. Log in to the administrator account that you identified earlier.
    4. Navigate to the Administration page. To navigate to the Administration page, locate your account avatar and select <account-avatar> Administration.
    5. On the Administration page, select SecurityLogin.
    6. Locate the Two-Factor Authentication section and Enable Two-Factor Authentication.
    7. When monday.com prompts you to choose your authentication method, select Authentication App and Continue.
    8. A pop-up window displays your MFA secret key as a QR code, but do not scan the QR code. Copy code instead to display a text version of the MFA secret key.
    9. Copy and paste the text version of the MFA secret key into a text file.
      Do not continue to the next step unless you have copied the MFA secret key. You will provide this key to SSPM during the onboarding process.
    10. Continue configuring your authentication app by scanning the QR code or by manually entering the MFA secret key.

Connect SSPM to Your monday.com Instance

By adding a monday.com app in SSPM, you enable SSPM to connect to your monday.com instance.
  1. From the Add Application Page (Posture SecurityApplicationsAdd Application), click the monday.com tile.
  2. Under posture security instances, Add Instance or, if there is already an instance configured, Add New instance.
  3. Choose the option to Log in with Credentials.
  4. Enter the administrator login credentials, your account domain, and, optionally, the MFA secret key.
    If you have configured the administrator account for MFA, then the MFA secret key is required.
  5. Connect.