Review reference information for the product.
Learn about configuring wizard topics.
Welcome to the HCL AppScan Enterprise 10.6.0 documentation, where you can find information about how to install, maintain, and use HCL AppScan Enterprise.
Accessibility features assist users who have a disability, such as restricted mobility or limited vision, to use information technology content successfully.
Learn general information about the product.
Learn how to install the product.
Learn how to upgrade the product.
Learn how to integrate the product with other solutions.
Learn how to extend the product with REST APIs and plugins.
Learn best practices for using the product.
Learn how to configure the product.
Learn how to administer the product.
Follow this workflow to manage application security risks in your organization.
To help you understand, isolate, and resolve problems with your HCL® software, the troubleshooting and support information contains instructions for using the problem-determination resources that are provided with your HCL products.
Select the components you want to configure. The components available to you depend on the license.
Specify the name of the instance you want to configure.
Enter the SQL Server name, port number, select the authentication mode and the name of the database you are connecting to. If you select SQL Authentication, enter the username and password before you click Test Connection to verify that you can connect to the SQL Server. The configuration wizard does not proceed until the connection is successful. When AppScan® Enterprise Server creates the database in SQL Server, it automatically configures the collation for it.
AppScan® Enterprise no longer uses proprietary encryption mechanisms to prevent unauthorized transfers of its database because there are other third-party mechanisms that are designed to specifically perform physical layer encryption with less impact on performance. This type of encryption is usually applied at the database server level; for example, SQL Server Enterprise Edition has a built-in encryption TDE mechanism (Transparent Data Encryption). TDE encrypts the data residing in the database or in backups on physical media. SQL Server Standard Edition uses Windows™ Encrypting File System.
Specify the service account that will be used by the services.
For security reasons, HTTPS is enabled for Enterprise Console. Choose a certificate from the list of certificates that are installed in IIS. Taking these actions will help you deploy a secure AppScan® Enterprise in your environment.
Upon upgrade, you can choose to restore previous AppScan Server customized settings on the Liberty Server. This screen appears once upon upgrade; if you run the configuration wizard later, this screen won't appear.
If you choose to use a keystore that contains a trusted certificate chain for this host, complete the available fields.
Select an Authentication Mechanism to use to log into the Enterprise Console. If you choose Windows, you must be part of a domain.
This user is licensed separately; if you want to reassign the Product Administrator license, you must rerun the configuration wizard.
A server group is a group of items that can be tested as a unit; the same security tests will be applied to all the servers in the group. A server group can be any combination of domains and IP addresses. You must create one or more server groups to define what can be tested. Once a server group is created, you then assign it to a Job Administrator. That person then creates jobs that perform security tests on a specific group of servers. As of version 9.0, Server Groups are no longer defined by URL. Any existing URL definitions are removed from existing Server Groups and listed in the WFCfigWiz.log.
Configure the host name and port of the Liberty server for AppScan Enterprise Server to use. If you are using Windows authentication, prefix the host name with your domain name.
Learn about folder explorer topics.
Reports are automatically generated after a job has run. They provide a way of managing issues so that you can helps you manage issues that are important to your organization and do so in a way that is supported both by the Enterprise Console's workflow and the workflows of other processes within your organization.
A GitHub collection of integrations, helper scripts, utilities, useful examples, libraries, and other resources related to HCL AppScan.