Updating security rules

Make sure that you must have the latest version of AppScan® Enterprise (including Fixpacks and iFixes) before you update to the latest security rules. You can verify the version and release date of the security rules by looking in the About link in the AppScan Enterprise main menu.

About this task

Update the security rules during your regularly scheduled maintenance period.

Procedure

  1. Go to the HCL® FNO website.
  2. Download the file called AppScanEnterprise-<Enterprise-Version>-RulesUpdate-<RulesVersion>.zip (for example, AppScanEnterprise-9.0.3.1-RulesUpdate-3193.zip) and save it on the computer where AppScan Enterprise Server is installed.
    Note: Do not unzip the file.
  3. In AppScan Enterprise, go to Administration > Security Rules Update page, browse to the AppScanEnterprise-<Enterprise-Version>-RulesUpdate-<RulesVersion>.zip file, and click Install.
    Note: Make sure that you must have the latest version of AppScan Enterprise (including Fixpacks and iFixes) before you update to the latest security rules.

Results

Issue types are changed periodically in the security rules. If you have a scan with old issue types that no longer exist after a security rules update, the issues with those issue types will disappear after the update, and new issues will be found with the new issue types. Those issues will have to be triaged again.