Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY 26.2.0
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Administration Guide

    Home FortiCNAPP Administration Guide
    26.2.0
    26.2.0

    GitLab

    GitLab

    The following steps will help you integrate with a GitLab Project.

    FortiCNAPP does not support SCM integration with self-hosted GitLab.

    Self-hosted Gitlab is supported for the following integrations:

    Integrating repositories with GitLab requires you have an Owner or Maintainer role in GitLab.

    Integrating FortiCNAPP with GitLab requires token-based authentication. Before you create a Group Access Token, you should decide which GitLab Groups you want FortiCNAPP to scan and choose one to start with. Visit the GitLab Documentation for help creating a Group Access Token.

    The token you create must have the role set to Maintainer and both the read_repository and api scopes selected.

    Once you have created a Group Access Token, you can integrate with GitLab.

    To integrate with GitLab:

    1. Log in to the console.

    2. Go to Settings > Integrations > Code security.

    3. Click Add integration.

    4. Select an integration type:

      1. Select a Git provider.

      2. Select GitLab.

    5. Click Go to GitLab.

    6. Log in to your GitLab Account.

    7. Click Authorize.

    8. In the console, enter your Group Access Token and use the dropdown the select the corresponding GitLab group.

    9. Click Test integration.

    10. Once the test returns Integration successful, click Next. The Code Security app then scans and lists the integrated organizations and repositories.

    11. Click Close to exit the integration wizard.

      FortiCNAPP Code Security will automatically scan the default branch of all your repositories. Once the scans are completed, you will be able to see the results in the UI.

    Once integrated, you can enable or disable different Code Security tools. The following topics provide information on navigating through the UI of each Code Security tool:

    Previous
    Next

    GitLab

    GitLab

    The following steps will help you integrate with a GitLab Project.

    FortiCNAPP does not support SCM integration with self-hosted GitLab.

    Self-hosted Gitlab is supported for the following integrations:

    Integrating repositories with GitLab requires you have an Owner or Maintainer role in GitLab.

    Integrating FortiCNAPP with GitLab requires token-based authentication. Before you create a Group Access Token, you should decide which GitLab Groups you want FortiCNAPP to scan and choose one to start with. Visit the GitLab Documentation for help creating a Group Access Token.

    The token you create must have the role set to Maintainer and both the read_repository and api scopes selected.

    Once you have created a Group Access Token, you can integrate with GitLab.

    To integrate with GitLab:

    1. Log in to the console.

    2. Go to Settings > Integrations > Code security.

    3. Click Add integration.

    4. Select an integration type:

      1. Select a Git provider.

      2. Select GitLab.

    5. Click Go to GitLab.

    6. Log in to your GitLab Account.

    7. Click Authorize.

    8. In the console, enter your Group Access Token and use the dropdown the select the corresponding GitLab group.

    9. Click Test integration.

    10. Once the test returns Integration successful, click Next. The Code Security app then scans and lists the integrated organizations and repositories.

    11. Click Close to exit the integration wizard.

      FortiCNAPP Code Security will automatically scan the default branch of all your repositories. Once the scans are completed, you will be able to see the results in the UI.

    Once integrated, you can enable or disable different Code Security tools. The following topics provide information on navigating through the UI of each Code Security tool:

    Previous
    Next