> ## Documentation Index
> Fetch the complete documentation index at: https://docs.rad.security/llms.txt
> Use this file to discover all available pages before exploring further.

# BusinessMap

> Connect BusinessMap (Kanbanize) to RAD Security to create and manage security cards on your portfolio kanban boards.

# BusinessMap Integration Setup

This guide walks you through generating a BusinessMap (formerly Kanbanize) API key, identifying your instance URL, and configuring the integration in RAD Security so that security incidents and remediation work can be tracked as cards on your BusinessMap boards.

[BusinessMap](https://businessmap.io/) is a portfolio kanban platform used for managing work across teams. Once integrated, RAD Security can create cards from security findings, sync card updates, and surface BusinessMap card context inside RADBot and Automations.

## Prerequisites

Before you begin, ensure you have:

<Check>
  * Admin access to your BusinessMap account (to generate API keys and manage users)
  * The URL of your BusinessMap instance (e.g. `https://yourcompany.kanbanize.com`)
  * Access to a RAD Security workspace with integration permissions
</Check>

<Info>
  **Service User Recommended:** Create a dedicated BusinessMap user for this integration. Personal users may be removed when team members leave, which will break the integration.
</Info>

***

## Step 1: Create a Service User in BusinessMap

<Steps>
  <Step title="Sign in as Administrator">
    Sign in to your BusinessMap instance with an account that has administrative privileges.
  </Step>

  <Step title="Open User Management">
    1. Click the **gear icon** (Administration) in the top navigation
    2. Navigate to **Account → Users**
  </Step>

  <Step title="Create a Service User">
    1. Click **Add new user**
    2. Enter a service email (e.g. `rad-security@yourcompany.com`) and full name (e.g. "RAD Security Integration")
    3. Set a strong password
    4. Click **Save**
  </Step>

  <Step title="Grant Board Access">
    1. Open the new user's profile
    2. Under **Board access**, grant access to the boards where RAD Security should create or update cards
    3. Choose the minimum role that allows reading and creating cards on those boards

    <Note>
      BusinessMap permissions are board-scoped. Grant only the boards that are relevant to security work.
    </Note>
  </Step>
</Steps>

***

## Step 2: Generate an API Key

<Steps>
  <Step title="Sign in as the Service User">
    Sign out of your administrator account and sign back in as the service user created in Step 1.
  </Step>

  <Step title="Open API Key Settings">
    1. Click your profile avatar in the top right
    2. Select **My account**
    3. Navigate to the **API key** section
  </Step>

  <Step title="Generate the Key">
    1. Click **Generate API key**
    2. Immediately copy the generated key

    <Warning>
      The API key inherits all permissions of the user who generated it. Make sure you generate it while signed in as the service user — not as a personal admin.
    </Warning>
  </Step>
</Steps>

***

## Step 3: Configure in RAD Security

In your RAD Security workspace, add a new **BusinessMap** integration with the following parameters:

| Parameter   | Description                           | Example                             |
| ----------- | ------------------------------------- | ----------------------------------- |
| **URL**     | Root URL of your BusinessMap instance | `https://yourcompany.kanbanize.com` |
| **API Key** | The API key generated in Step 2       | `your-api-key-here`                 |

<Note>
  The **URL** must be the base instance URL — no trailing path. The integration calls `<URL>/api/v2/me` to verify the credentials.
</Note>

Click **Verify** to test the credentials. When verification succeeds, save the integration.

***

## Verify Integration

1. Navigate to **Data Sources → Integrations → Ticketing** in RAD Security
2. Locate your **BusinessMap** integration
3. Confirm the connection status shows as **Connected**
4. Trigger an automation or RADBot action that creates a card on a BusinessMap board

<Check>
  Your BusinessMap integration is now configured. RAD Security can create and manage cards on your boards, and RADBot can read card context to inform its decisions.
</Check>

## What Data is Synced

<AccordionGroup>
  <Accordion title="Card Operations (from RAD to BusinessMap)" icon="ticket">
    * Create new cards on configured boards
    * Update card details (title, description, custom fields)
    * Move cards between columns or boards
    * Add comments and subtasks
  </Accordion>

  <Accordion title="AI / MCP Capabilities" icon="robot">
    * Read card details, comments, and subtasks
    * Search cards matching specific criteria
    * Provide BusinessMap context to RADBot during investigations and automations
  </Accordion>
</AccordionGroup>

## Use Cases

<CardGroup cols={2}>
  <Card title="Security Work in One Place" icon="layer-group">
    Track remediation alongside the rest of your team's portfolio kanban work in BusinessMap.
  </Card>

  <Card title="Automated Card Creation" icon="wand-magic-sparkles">
    Use RAD Security Automations to automatically create BusinessMap cards from high-severity findings.
  </Card>

  <Card title="RADBot Context" icon="robot">
    Let RADBot read and link to BusinessMap cards while investigating incidents.
  </Card>

  <Card title="Cross-Team Visibility" icon="users">
    Surface security work on the same boards your engineering and operations teams already use.
  </Card>
</CardGroup>

## Troubleshooting

<AccordionGroup>
  <Accordion title="Verification fails with 401 Unauthorized" icon="triangle-exclamation">
    **Possible causes:**

    * The API key is incorrect or has been revoked
    * The API key belongs to a deleted or deactivated user

    **Solution:**

    * Sign in as the service user and confirm the API key in **My account → API key**
    * Re-generate the API key if it was revoked, and update the integration in RAD Security
  </Accordion>

  <Accordion title="Verification fails with 403 Forbidden" icon="shield-exclamation">
    **Possible causes:**

    * The service user does not have access to the boards RAD Security needs to operate on
    * The user's role is too restrictive to read or create cards

    **Solution:**

    * Re-check the service user's board access in **Administration → Users**
    * Grant a role with at least read + create on the target boards
  </Accordion>

  <Accordion title="Cards are not created on the expected board" icon="ticket-slash">
    **Possible causes:**

    * The automation or RADBot action targets a board the service user cannot access
    * Required custom fields are not mapped

    **Solution:**

    * Confirm the service user is a member of the target board
    * Verify that any required custom fields are present in the automation configuration
  </Accordion>

  <Accordion title="Wrong instance URL" icon="globe">
    **Possible causes:**

    * URL includes a trailing path (e.g. `/index.php`)
    * Custom domain or proxy in front of BusinessMap is mis-resolving

    **Solution:**

    * Use the base instance URL: `https://yourcompany.kanbanize.com`
    * Do not include `/api`, `/index.php`, or any other path
  </Accordion>

  <Accordion title="Rotating the API Key" icon="rotate">
    1. Sign in as the service user
    2. In **My account → API key**, generate a new key
    3. Update the **API Key** field on the RAD Security integration
    4. Save — RAD Security re-verifies on save
    5. Revoke the old key in BusinessMap
  </Accordion>
</AccordionGroup>

## Security Best Practices

<CardGroup cols={2}>
  <Card title="Use a Service User" icon="user-gear">
    Never use a personal user account. Create a dedicated service user with a service email.
  </Card>

  <Card title="Least Privilege" icon="shield-halved">
    Grant the service user access only to the boards RAD Security needs to read or write.
  </Card>

  <Card title="Rotate API Keys" icon="rotate">
    Rotate the BusinessMap API key on a schedule that matches your security policy.
  </Card>

  <Card title="Audit Card Activity" icon="clipboard-list">
    Periodically review cards created by the service user to detect unexpected behavior.
  </Card>
</CardGroup>

## Next Steps

<CardGroup cols={2}>
  <Card title="Ticketing Overview" icon="ticket" href="/rad-security/integrations/ticketing/overview">
    Learn about other ticketing integrations
  </Card>

  <Card title="Workspace" icon="chart-line" href="/rad-security/platform/workspace">
    Configure custom workflows for incident response
  </Card>

  <Card title="Data Sources" icon="database" href="/rad-security/integrations/data-sources">
    Explore all available data sources
  </Card>

  <Card title="RADBot" icon="robot" href="/rad-security/getting-started/radbot">
    Learn how RADBot uses BusinessMap context during investigations
  </Card>
</CardGroup>