# Integrations Overview

Veza provides built-in integrations for a comprehensive range of cloud infrastructure and service platforms, identity providers, on-premise & modern data ecosystems, and SaaS applications. The Open Authorization API (OAA) provides compatibility with in-house and proprietary applications and identity providers. See [Veza Integrations](/4yItIzMvkpAvMVFAamTf/integrations/integrations.md) for all supported integrations.

Integrations typically require only read-only permissions to the application to discover authorization metadata. After [configuring](/4yItIzMvkpAvMVFAamTf/integrations/configuration.md) an integration, Veza will periodically create snapshots of identities, resources, and authorization relationships for the provider, and calculate effective permissions and cross-service connections for users, groups, and other entities.

* Veza automatically detects relationships connecting unique corporate identities (such as federated IdP users), the local accounts they can assume, and the resources they can act on (due to IAM policy, role assignment, group membership, app assignments, or other factors).
* You can explore and visualize the entities and relationships that Veza discovers with Search, Insights, Access Reviews, and the [Access Intelligence Overview](/4yItIzMvkpAvMVFAamTf/features/insights/entities-overview.md).
* Some integrations additionally support features such as [Access Monitoring](/4yItIzMvkpAvMVFAamTf/features/activity-monitoring.md) and [Lifecycle Management](/4yItIzMvkpAvMVFAamTf/features/lifecycle-management.md).
* To add useful context for search and access review, Veza collects attributes and configurations for each integration, shown in search results and detail views. Attribute filters can target these properties to create fine-grained searches and rules.

### Native integrations

Veza builds native, in-platform integrations for most critical business systems. These integrations offer out-of-the-box support for cloud providers like AWS, Azure, and Google; identity provider solutions like Okta, and Azure AD, and modern data lake systems like Snowflake and Databricks.

Commonly used Veza integrations include:

* **Cloud Providers (IAM, Data Systems, Services):** [Amazon Web Services](/4yItIzMvkpAvMVFAamTf/integrations/integrations/aws.md) ([Setup Guide](/4yItIzMvkpAvMVFAamTf/integrations/integrations/aws.md)), [Google Cloud Platform](/4yItIzMvkpAvMVFAamTf/integrations/integrations/google.md) ([Setup Guide](/4yItIzMvkpAvMVFAamTf/integrations/integrations/google.md)), [Azure](/4yItIzMvkpAvMVFAamTf/integrations/integrations/azure.md) ([Setup Guide](/4yItIzMvkpAvMVFAamTf/integrations/integrations/azure.md))
* **Identity Providers:** [OneLogin](/4yItIzMvkpAvMVFAamTf/integrations/integrations/onelogin.md) ([Setup Guide](/4yItIzMvkpAvMVFAamTf/integrations/integrations/onelogin.md)), [Okta](/4yItIzMvkpAvMVFAamTf/integrations/integrations/okta.md) ([Setup Guide](/4yItIzMvkpAvMVFAamTf/integrations/integrations/okta.md)), [Active Directory](/4yItIzMvkpAvMVFAamTf/integrations/integrations/active-directory.md) ([Setup Guide](/4yItIzMvkpAvMVFAamTf/integrations/integrations/active-directory.md)), [Azure AD](/4yItIzMvkpAvMVFAamTf/integrations/integrations/azure-ad.md) ([Setup Guide](/4yItIzMvkpAvMVFAamTf/integrations/integrations/azure-ad.md)).
* **SaaS Apps:** [Salesforce](/4yItIzMvkpAvMVFAamTf/integrations/integrations/salesforce.md) ([Setup Guide](/4yItIzMvkpAvMVFAamTf/integrations/integrations/salesforce.md)), [SharePoint Online](/4yItIzMvkpAvMVFAamTf/integrations/integrations/sharepoint.md) ([Setup Guide](/4yItIzMvkpAvMVFAamTf/integrations/integrations/sharepoint.md)), [Box](/4yItIzMvkpAvMVFAamTf/integrations/integrations/box.md) ([Setup Guide](/4yItIzMvkpAvMVFAamTf/integrations/integrations/box.md)), [Slack](/4yItIzMvkpAvMVFAamTf/integrations/integrations/slack.md) ([Setup Guide](/4yItIzMvkpAvMVFAamTf/integrations/integrations/slack.md)).
* **Legacy and on-premise data sources:** [SQL Server](/4yItIzMvkpAvMVFAamTf/integrations/integrations/sql-server.md) ([Setup Guide](/4yItIzMvkpAvMVFAamTf/integrations/integrations/sql-server.md)), [Windows Servers and File Shares](/4yItIzMvkpAvMVFAamTf/integrations/integrations/windows.md) ([Setup Guide](/4yItIzMvkpAvMVFAamTf/integrations/integrations/windows.md))

> The organization-wide coverage provided by Veza integrations might include a primary cloud provider (AWS), a corporate identity provider (Okta), a Customer Relationship Management platform (Salesforce), a Source Control Management system (GitHub), and a Data Warehouse (Snowflake). The same organization could additionally integrate Veza with SharePoint, in addition to custom applications added with the Open Authorization API.

* Veza typically requires just a read-only service account to access and catalog a system's authorization metadata. More detail is contained within each integration configuration guide.
* Veza collects data using cloud-native APIs and encrypted TLS/HTTPS. An [Insight Point](/4yItIzMvkpAvMVFAamTf/integrations/connectivity/insight-point.md) (lightweight agent) can be deployed within your infrastructure for data sources that do not support API-based access or systems where you do not allow inbound access from the internet.
* The Veza *Configuration* page provides detailed integration status, overview, and control (change and add configurations, limit discovered services or entities, review status and logs). Each integration supports programmatic configuration with [/v1 APIs](/4yItIzMvkpAvMVFAamTf/developers/api/management.md).
* [Assessment queries](/4yItIzMvkpAvMVFAamTf/features/search/saved-queries.md) for each integration come built-in, powering Veza insights. Dashboards and Saved Queries offer pathways to identify, certify, and remediate over-privileged accounts, identify authorization risks and misconfigurations, and establish security baselines with rules and alerts.

### Open Authorization API (OAA)

[OAA](/4yItIzMvkpAvMVFAamTf/developers/api/oaa.md) offers support for adding custom applications, data systems, and identity providers to the Access Graph. Veza offers several open-source OAA connectors enabling identity-to-permissions mapping for software such as Slack, Gitlab, Jira Cloud, and other critical business applications.

Customers have used OAA to integrate a wide range of systems, including custom identity providers and internally developed applications. Both simple and complex integrations can be developed using the [Python SDK](https://github.com/Veza/oaa-community) and Veza’s [Developer Documentation](/4yItIzMvkpAvMVFAamTf/developers/api/oaa/best-practices.md).

* Data sourced using OAA integrations is available for use across the Veza Platform in our Search, Insights, and Workflows features.
* OAA uses [templates](/4yItIzMvkpAvMVFAamTf/developers/api/oaa/templates.md) to model identities, resources, and authorization relationships for Custom Identity Providers and Custom Applications – typically sourced using an API or data export.

### Veza Action Integrations

Administrators and developers can incorporate the power of Veza into other tools with built-in [Veza Actions](/4yItIzMvkpAvMVFAamTf/administration/administration/notifications.md). To enable custom integrations, customer-facing APIs are available for most Veza functions. Some use cases include:

* Post alerts to a Slack channel when anomalies are detected ([Slack](/4yItIzMvkpAvMVFAamTf/administration/administration/notifications/destinations/slack.md) integration)
* Integrate Workflows decisions with internal systems ([AWF API](/4yItIzMvkpAvMVFAamTf/developers/api/workflows.md))
* Create [Jira](/4yItIzMvkpAvMVFAamTf/administration/administration/notifications/destinations/jira.md) tickets for system events (anomaly or misconfiguration detected)
* Generate service desk tickets for remediation with the [ServiceNow](/4yItIzMvkpAvMVFAamTf/administration/administration/notifications/destinations/servicenow.md) integration


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.veza.com/4yItIzMvkpAvMVFAamTf/integrations/integrations-overview.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.