Threat Stack Integration Guide

Threat Stack is monitoring tool for your cloud infrastructure. This integration between PagerDuty and Threat Stack allows customers to easily send alerts generated by Threat Stack policies into PagerDuty to better manage their notifications and to fit in with operations workflow. Dismissing an alert within Threat Stack will automatically resolve the incident in PagerDuty. We have utilized PagerDuty Connect to make getting up-and-running as easy as possible.

In Threat Stack:

1.After logging into Threat Stack, select the Configuration > Integrations tab:

 

2. Clicking Alert with PagerDuty will begin the integration and take the user to the integration authorization page in PagerDuty:

 

3a. The customer enters their PagerDuty username and password to authorize the integration. Once authorized, the user can choose to Create a new Threat Stack service or Use an existing Threat Stack service:

3b. If you choose Create a new Threat Stack service enter the service name of your choosing (note: this will be the service name that is created in your PagerDuty account). Use the dropdown menu under Escalation Policy to choose the escalation policy you wish this service to be tied to in PagerDuty, then click Finish Integration.

 

4. After finishing the integration, the user is returned to Threat Stack and is able to configure the severity level of alerts sent to PagerDuty, view integration details and send a test trigger:

 

5. At this point, the integration is live and any alerts matching the customer’s severity level setting will result in PagerDuty incidents and notifications. When an alert is fired and a user is notified in PagerDuty, we pass along additional details, including a stable URL that can take the user directly to the alert in Threat Stack:


6. Clicking Details reveals more information about the incident. Clicking View in Threat Stack will take the user directly to the alert details for further investigation:

If you are having trouble completing the installation, please contact our support.