Welcome
Getting Started
Basic Job Setup
You configure a job by choosing the settings that best enable AppScan® Enterprise to access to your application and run tests on it.
Additional Job Setup
AppScan® Enterprise users with additional privileges assigned by the Administrator see Additional setup options below the Basic options in the left pane. Other users do not see these options.
- Environment Definition
  Environment Definition view of the Configuration dialog box.
- Exclude Paths and Files
  Exclude Paths and Files view of the Configuration dialog box.
- Explore Options
  Explore Options view in Additional Job Setup.
- Parameters and Cookies
  Parameters and Cookies view of the Configuration dialog box.
  - Parameter definition
  - Parameter names
  - Session IDs
  - Redundancy tuning
    Careful redundancy tuning can significantly reduce scan time.
  - Advanced: Custom Parameters tab
    The Advanced tab of Parameters and Cookies view in the Configuration dialog box.
  - Custom Header tab
    The Custom Headers tab of Parameters and Cookies view in the Configuration dialog box.
- Automatic Form Fill
  Automatic Form Fill view of the Configuration dialog box contains the values used to fill forms in your application.
- Error Pages
  Error Pages view of the Configuration dialog box.
- Multi-Step Operations
  Multi-Step Operations view of the Configuration dialog box is for testing parts of the site that can only be reached by clicking links in a specific order.
- 3rd Party Authentication
  3rd Party Authentication view of the Configuration dialog box lets you configure AWS settings.
- Test Optimization
  Test Optimization view of the Configuration dialog box lets you take advantage of our ongoing statistical analysis for a faster scan.
- Test Options
  Test Options view of the Configuration dialog box.
- Advanced Configuration
  Advanced Configuration view is used to change advanced registry settings, and it should only be used by experienced users, or when instructed to do so by the support team to troubleshoot a problem.
Notices

Parameter names

Procedure

In the Name text box, enter the parameter or cookie name, or a regular expression that matches it:

All text is case-sensitive; add (?i) to the regexp if you want it to be case-insensitive
Strings in the regexp are considered partial; you do not need to add (.*)

A number of default definitions are provided.


Type	Value	Includes
Parameter	__VIEWSTATE	parameters with this string in their name
Parameter and Cookie	^CFID	parameters and cookies whose names begin with CFID or cfid
Parameter and Cookie	Token	parameters and cookies whose names include "Token"

Note: A regular expression (regexp) is a string that describes a set of strings, according to certain syntax rules. IBM® Security's Expression Test PowerTool (Tools > Expression Test) can be useful to verify the syntax of your regexps.

If you need additional help writing regexps you may find the following link useful: http://www.regular-expressions.info/quickstart.html