Creating a QuickScan template using scan properties from AppScan Standard
The security team can create a scan template based on scan configuration options in AppScan Standard. Developers modify these templates in the AppScan Dynamic Analysis Client to create scans. The AppScan Dynamic Analysis Client uses the same scan configuration options that are used in AppScan Standard, including action-based login and manual explore.
About this task
User role: Product Administrator
This task assumes that you have created a scan template file in AppScan Standard.
Procedure
- In the Scans view, go to the Templates folder in the Folder list and click Create in the main content pane.
- On the Create Folder Item page, select Create Template for Content Scan and give it a name.
- Select Create using properties from AppScan
Standard scan template file (.scant file) as the Method
of Creation and browse to the file location
of the *.scant file. Note: If you do not have a copy of AppScan Standard, click Download. After you install it and create a *.scant file, then you can upload it here.
- Add the *.scant file that you located and click
.Note: If there are any issues during the upload process, they display in the Folder Item Created page as not supported.
- Security test policies are ignored during upload. On the template's Security page, select a test policy. Or, to let developers pick their own security test policy, choose Use the AppScan Dynamic Analysis Client to select. Users can select their own policy when they create a scan in the Client.
- Configure the remaining options for the template, such as Log Settings, Agent Server, Job Properties, and What to Scan.
- To prevent users from accessing the advanced scan configuration pages, disable the check box on the Template Configuration page.
- Click Save.