Connect GitLab Self Managed Server

Table of contents:

• Step 1. Select Google or O365 to authenticate

• Step 2. Insert your GitLab server URL

• Step 3. Create a Personal Access Token

• Step 4. Select the group and repositories you'd like to secure

• Get Started →

• Discover Integration Details →

Connect GitLab Self Managed Server to Aikido

Aikido allows you to connect your self-managed GitLab server to secure your code. In order to connect your GitLab server to Aikido, you will need to follow the steps below.

Important before you start

• If your GitLab is behind a firewall, we have a list of Static IPs you can whitelist.

• The person who sets up the account needs to have access rights both to the GitLab instance and GitLab group.

Step 1. Select Google or O365 to authenticate

Step 1. To connect your GitLab server, you first need to authenticate via Google or Office 365 to create a user in Aikido. On the signup screen, click on 'Google / Microsoft' to continue.

Step 2. Once you're authenticated, you can either create a new workspace by clicking the Self-Managed button in the GitLab section.

Step 2. Insert your GitLab server URL

When you decide to create a new workspace, you'll need to provide a few details about your self-managed GitLab instance so Aikido can connect to it.

Enter the URL to your GitLab server in the first input field.

Step 3. Create a Personal Access Token

Next up, you need to create a Personal Access Token to give us access to the resources you want. The best way to do this is by creating a service account and create a token for this service account.

• Log in to your GitLab server

• Go to the admin area (/admin )

• Go to the service accounts page by clicking "Settings" and then click on "Service accounts"

• On this page, click on "Add service account", enter a name for the service account and save it

• Now that the service account is created, you can create a PAT for it by clicking the three dots and select "Manage access tokens"

  
• Click on "Add new token"

• Enter a name for the token, eg: 'Aikido Security Access Token'

• You don't need to select an expiration date

• We need the following scopes to be selected:

  • read_user

  • read_api

  • read_repository

• Click the Create token button at the bottom of the form.

  
• Copy the token being shown on the screen and enter it in the input field.

Important: You will no longer be able to view the value of the token once you hit continue. Make sure you copied it first.

Aikido will now check the connection to your GitLab server. If the connection was not successful, make sure to double-check the URL you entered and the personal access token you provided.

Step 4. Select the group and repositories you'd like to secure

On the next screen, you can select which group you'd like to start with. You'll always be able to connect more of your groups to Aikido.

In the final step you can select all the repositories you would like us to monitor.