Overview
Nucleus enables you to sync your NexusIQ vulnerability data directly from NexusIQ into the Nucleus console using an automated connector. The connector uses the APIs provided by NexusIQ to seamlessly sync data into various Nucleus projects for use in analysis, triage, automation and reporting.
Establish connection
- Navigate to Integration Hub > Connector Setup.
- Navigate to the Scanners section and click the Sonatype Nexus IQ icon.
- In the Create Sonatype Nexus IQ Connector popup, enter in the following:
Attention
If you're using the Nucleus Agent to connect to an on-premise server for this tool, please refer to the document here.
| Field | Description |
|---|---|
| Name | Name to identify the connector in Nucleus |
| Description | Optional description to add some details about the connector for other users |
| Nexus IQ Server URL | URL to your base Nexus IQ server |
| Username | Your Nexus IQ server username (recommend service account) |
| Password | Your Nexus IQ server user password (recommend service account) |
- Click Save Connection and wait for confirmation that the connector has been saved.
- Click Verify Connection and wait for the Success message.
Import data
- Go to Integration Hub > Import via Connector.
- Select the Nexus IQ connector you just created.
- Choose to import by Application, Category, or Organization.
- Click Next and select what you'd like to import.
- Click Next and select how often you want to import, either one-time or auto-imported on a schedule.
- Click Save & Finish and you're done!
Special features
Metadata fields
- nexusiq.organization = the name of the organization that the application exists in (note that organizations cannot be nested apart from under the “Root” Organization
- nexusiq.application-name = the prettified name of the application
- nexusiq.application-id = the application’s id, as specified when creating an application
- nexusiq.contact = the name of the contact specified on an application (this is done via selecting the application, clicking Actions and then selecting Select Contact)
- nexusiq.repository-url = the Git repo URL specified on the application (this only exists if sonatype identified it when it ran)
- nexusiq.application-categories = a list of all application categories applied to the application (this should be all of the inherited and local categories)
*** nexusiq.application-categories.inherited** = a list of the inherited application categories that have been applied to the application. By inherited, this means categories that are defined at the Root organization level and applied to the application. - nexusiq.application-categories.local = a list of all of the local application categories that have been created / applied to that application. By local, this means all categories that have been defined at the organization level (not root) and applied to the application.
- nexusiq.policies = a list of all policies applied to the application (this should be all of the inherited and local policies)
- nexusiq.policies.inherited = a list of all of the inherited policies that have been applied to the application. By inherited, this means policies that are defined at the Root Organization level and applied to the specific application
- nexusiq.policies.local = a list of all of the local policies that have been applied to the application. By local, this means all policies that have been defined at the organization level (not root) and applied to the application.
- nexusiq.component-labels = a list of all component labels applied to the application (this should be all of the inherited and local component labels)
If you have any questions, please contact us through the support center.