Armis Integration

ServiceRadar ingests Armis device intelligence to enrich inventory, surface unmanaged assets, and drive risk-based alerting. The integration runs through the embedded sync runtime in the ServiceRadar agent and optionally uses the Faker generator for demos.

Prerequisites

Armis API client credentials with read access to your account.
A ServiceRadar agent with outbound connectivity to the Armis API.
Armis credentials stored in the integration config (managed through the UI or API).

Enabling the Integration

Create an Armis integration source in Integrations → New Source and provide the API URL, client ID, and secret.
Ensure a sync-capable agent is connected. If running in Kubernetes, watch kubectl logs deploy/serviceradar-agent -n <namespace> for armis_sync messages confirming pagination progress.
Confirm imported devices in the registry via srql: in:devices source:armis sort:risk_score:desc limit:20.

Alerting and Enrichment

Sync attaches Armis risk scores and device tags; combine them with SNMP status to prioritize outages.
Use the Service Port Map to overlay Armis risk data on topology diagrams.

Troubleshooting

Authentication failures usually mean expired client secrets—rotate them in the integration config and confirm the agent is online.
Large accounts may hit rate limits; tune page_size and enable incremental sync by storing the last_seen cursor.
For ingestion gaps, consult the Troubleshooting Guide and cross-check Faker vs. production statistics.

Prerequisites​

Enabling the Integration​

Alerting and Enrichment​

Troubleshooting​

Prerequisites

Enabling the Integration

Alerting and Enrichment

Troubleshooting