Remediation Component

The CrowdSec Remediation Component integration allows you to feed a Remediation Component directly from a CrowdSec blocklist, without requiring a local Security Engine.

This is the integration to use for platforms that do not support native IP list ingestion from an external URL — such as Cloudflare, AWS WAF, and others. Remediation Components act as the bridge between CrowdSec's blocklist endpoint and those platforms. See the full list of available Remediation Components to find the one matching your platform.

Step 1 — Create the integration in the CrowdSec Console

In the Integrations page, click Connect under the Remediation Component card.

CrowdSec Remediation Component Integration Card

Name the integration (must be unique to your account), then click Create.

CrowdSec Remediation Component Integration Creation Screen

The credentials shown next are displayed only once. Copy them before closing this screen.

CrowdSec Remediation Component Integration Credentials Screen

Step 2 — Configure the Remediation Component

Use the credentials from the Console to configure your Remediation Component. Refer to the Remediation Component documentation for platform-specific setup instructions.

Next Steps

Subscribe to blocklists in the Blocklist Catalog to populate your integration.

Step 1 — Create the integration in the CrowdSec Console​

Step 2 — Configure the Remediation Component​

Next Steps​

Step 1 — Create the integration in the CrowdSec Console

Step 2 — Configure the Remediation Component

Next Steps