Known issues in HCL AppScan 360°

Known issues in releases, and workarounds when applicable.

Known issues in AppScan 360° version 2.0.0

IAST Agent download fails when AppScan 360° is reinstalled with the same version, but a new database.
During distributed installation, component pods are not displayed when custom namespaces are used. This is due to default namespace values; does not impact the installation process.
If AppScan 360° was installed with a custom ASRA or SCA namespace, uninstalling using teardown.sh may fail. Try uninstalling individual components separately.
When DAST Open API scanning is configured with automatic API authentication, the scan fails with the message Out-of-session during Explore stage. To avoid this scenario, configure Open API scans with recorded or API key authentication.
Adding user with email is not supported for Domino LDAP.

The Install AppScan GitHub Application button or link under SAST scan will work only after you select a Presence.
Under Domain Management, the Asset group filter "All" is not working as expected.
For scheduled scans, ESM logs are not being recorded.
Automatic update of AppScan Go! is not functional. See Automatic update of AppScan Go! fails for more information.

If a scan fails within a minute or two with the message, "Error: An unknown error occurred", either:
- The server is down or unreachable, or
- The starting URL is incorrect.
Download the log file to confirm the issue:
1. From the AppScan 360° Scan page, select Manage Scan > Download Log.
2. Download the .ZIP file and extract its contents.
3. Open ScanLog_<yy>.log (where yy is number between 1 and 100).
4. If the message CRWAD0601I - [ServerDown] Cannot connect to host: is present:
  - Verify that the target server is reachable and responding, and/or
  - Verify that the starting URL is entered correctly.
After entering the starting URL for a scan, you may see the error message, "Unless this is a private network, please verify your domain. Learn more." Check the starting URL as entered for leading spaces. Remove the whitespace characters and try again.
Encrypted traffic file is not supported.
If a scan has multiple executions, the log file will have multiple files with the same name. To extract the log files, use an archive utility that supports auto-rename feature such as 7zip.

Known issues in AppScan Central Platform

On some installations, regulatory and compliance reports generate without any issues.
To resolve the issue, restart the pod that starts with ascp-mr-tasks-manager for the scheduler to refresh the data for the report. In most cases the reports start to function after 20 minutes, but occasionally it may take up to 24 hours.
When working with scan results, clearing filters using the Clear option in the Filters dialog box removes all issues.
When attempting to generate a security report for a filtered list of fix groups, the report may fail to generate.
If you deploy a scan, but there are insufficient resources to run the scan, the scan may stall and not progress, even while showing at state of "Running" in AppScan Central Platform.
Check the status of the scan in the K8S cluster. The status of the scan (name starting with sast-job-) may be "Pending". In this instance you can either:
- Wait for other scans to finish and resources to free up. The Running/Pending scan will proceed when sufficient resources are available.
- Add more resources and redeploy the scan.

Known issues in AppScan Central Platform

On some installations, regulatory and compliance reports generate without any issues.

Known issues in AppScan 360° Static Analysis