Installing AppScan Source and integrating it with an existing AppScan Enterprise Server

In this scenario, AppScan® Source components are installed on one machine - and they are configured to connect to an existing AppScan Enterprise Server.

About this task

This scenario is divided into two sections:
Important:
  • Before installing any component required for AppScan Source, consult the component's system requirements to ensure it supports your operating system.
  • Note: As of version 9.0.3.11, AppScan Source no longer supports macOS or iOS Xcode project scanning.

Installing AppScan Source

Procedure

  1. Locate the HCL® AppScan Source product zip file (in your AppScan Source media pack - or the electronic image that you downloaded as part of an AppScan Source eAssembly at FlexNet Operations).
  2. Extract the image to a local drive. In the resulting directory:

    Detailed information about launching the installation wizard can be found at Starting the installation wizard.

  3. You are presented with a screen that allows you to select the national language that will be displayed in the installation panels. Select the language and click OK to proceed.
  4. After you launch the installation wizard, the Welcome - Installation Wizard panel opens and recommends that you quit any open applications. Click Next to begin the installation procedure.
  5. In the Component Selection installation panel, select the components to install. AppScan Source components are divided into server and client components:
    1. To install AppScan Source server components, select Server Component Selection and then choose the components to install:
      • AppScan Source Database
      • AppScan Source for Automation
    2. To install AppScan Source client components, select Client Component Selection and then choose the components to install:
      • AppScan Source for Analysis
      • AppScan Source Command Line Interface
      • AppScan Source for Development for Eclipse, RAD, MobileFirst (not selected by default)
      • Windows only: AppScan Source for Development Visual Studio plugins (not selected by default)(Visual Studio plugin options are available only if the installer has detected Microsoft Visual Studio on your system)

      By default, when Client Component Selection is selected, the AppScan Source for Development plug-in components are deselected and all other components are selected.

    After you have selected the components that you want to install, click Next to advance to the next installation panel.
  6. In the Server Connection panel, choose one of these options:
    • I will connect to an AppScan Server instance: Selecting this option allows you to test the remote AppScan Enterprise Server to ensure that it is available for connection to AppScan Source. To test the server connection, complete these fields:
      • AppScan Enterprise Server: Specify the hostname for your remote AppScan Enterprise Server instance in the existing URL format.
      • Product Administrator: Specify your AppScan Enterprise Server administrator user ID.
      • Password: Specify the password for your AppScan Enterprise Server administrator user ID.

      When the server settings have been entered, click Test Connection to ensure that the server will be available for connection to AppScan Source.

    • Let me proceed without specifying a server: Select this option to proceed without specifying a server.
    Important:
    • If the Enterprise Server that you will connect to is enabled for NIST 800-131a compliance, you cannot test a connection to the server. In this case, proceed without specifying a server. After the installation of AppScan Source and the Enterprise Server are complete, follow the instructions for Registering the AppScan Source Database with AppScan Enterprise Server, ensuring that the Force TLSv1.2 option is applied.
    • If your AppScan Enterprise Server has been set up with Common Access Card (CAC) authentication, select Let me proceed without specifying a server and then use the appscanserverdbmgr_cac utility for all server connection settings and tests.

    Click Next to advance to the next installation panel.

  7. In the Installation Target Specification page, specify the installation directory. The default directories, by operating system, are:
    • 64-bit versions of Microsoft Windows:
      <SYSTEMDRIVE>:\Program Files (x86)\ibm\appscansource
    • Linux: If you are the root user, the Installation Wizard installs your software in /opt/ibm/appscansource. If you are not the root user, you can install the AppScan Source for Development Eclipse plug-in - which installs to <home_directory>/AppScan_Source by default.
    Important:
    • The installation directory name can only contain English characters. Folders with names containing non-English characters are not permitted.
    • If you are installing on Windows, you must have Administrator privileges to install AppScan Source components.
    • If you are installing on Linux, you must have root privileges to install AppScan Source server components.

    Click Next to advance to the next installation panel.

  8. If the HCL AppScan Source Database component was selected for installation in the Server Component Selection page, the database selection panel displays. In this page, select one of:
    • Install solidDB®
    • Install database into existing Oracle <version> Server

    For additional information about installing solidDB - or to an existing Oracle database - refer to Installing the database and configuring connections to AppScan Enterprise Server.

    Click Next to advance to the next installation panel.

  9. If you choose to install a solidDB database in the Database selection panel, you are prompted with the Configure solidDB Admin User panel. In it, configure the solidDB database administrator account. The default database administrator user name and password are both dba. You cannot change this user name, however, the password can be changed.
    Note: To learn how to change the user password after completing the product installation, see Changing solidDB user passwords after installation.

    Click Next advance to the next installation panel.

  10. The Configure solidDB AppScan Source User panel allows you to configure the solidDB AppScan Source database user account. You can retain the default user name, ounce, and default password, ounce. All components that read from or write to the AppScan Source Database use this account.
    Note:
    • If you change the user names and passwords, you must keep a record of the new configuration in case your HCL® support representative requires access to your AppScan Source Database.
    • To learn how to change the user password after completing the product installation, see Changing solidDB user passwords after installation.

    Click Next to advance to the next installation panel.

  11. In the language pack selection panel, choose the language packs to install. When you install a language pack, the AppScan Source user interface will display in that language when it runs on an operating system that is running that locale.

    By default, English is selected (and cannot be deselected). If the installation wizard is displaying a national language other than English (in other words, a language other than English was selected in the installation wizard welcome panel), that language will also be selected in this panel (however, it can be deselected).

    After you have selected the language packs that you want to install, click Next to advance to the next installation panel.

    Note: If you do not install a specific language pack, you will not be able to add that language post-installation.
  12. Review and accept the terms of the license agreement and then click Next to continue.
  13. Review the summary of installation options before proceeding. If you want to change your selections, click Previous to return to the previous pages. When you are satisfied with your installation choices, click Install. The installer copies files to the hard disk drive.

    For Linux server installations only: After copying files, you must identify the daemon user. Select Create User 'ounce' or Run with Existing User, either to create the default user, ounce, or run with an existing user. (The installation validates that the user exists. Note that the selected user must have a valid shell.)

    During the installation, clicking Cancel at any time results in the uninstallation of all components.

  14. In the HCL AppScan Enterprise Server Configuration panel, specify the settings that will allow a solidDB database to connect to the AppScan Enterprise Server. By default, this installation panel pre-fills with entries that assume the database and server are installed on the same machine, with default settings. To configure the AppScan Source Database with the AppScan Enterprise Server, select the Configure the AppScan Enterprise Server now check box and complete these settings:
    • AppScan Enterprise Server: Specify the URL for your AppScan Enterprise Server instance.
    • User ID: Specify your AppScan Enterprise Server administrator user ID. If the server is configured for Windows authentication, enter the Windows user ID that was used when your account was added to the server (the user ID must be in the format <host name>\<user id>).
    • Password: Specify the password for your AppScan Enterprise Server user ID.
    • Database Host Name: Specify the host name for the machine on which you have installed the AppScan Source Database.
      Note: The entry in this field should always be the fully-qualified host name of the machine on which the installer is running. This value should be pre-filled in this field at install time and should only be changed if the value has pre-filled incorrectly.

    Click Next to advance to the next installation panel.

    Note: If you will be using an Oracle database, ensure that Configure the AppScan Enterprise Server now is not selected and then click Next. This installation panel is not used for registering an Oracle database with the Enterprise Server. Instead, configure the database connection post-installation using a utility that is included with AppScan Source. Information about this can be found at Registering the AppScan Source Database with AppScan Enterprise Server . This utility can also be used to configure a solidDB connection instead of using this installation panel.
  15. In the Installation Complete panel, you can initiate product activation immediately after exiting the installation wizard by selecting Launch HCL AppScan Source License Manager. Click Done to complete the standard installation and exit the Installation Wizard.
  16. In the License Manager utility:
    1. To apply a license file, click Import and then browse to your downloaded AppScan Source license.
    2. To apply a floating license, click Configure license servers and then click Add. Enter the information for the host machine that contains the floating license.
    See Activating the software for additional activation instructions.

Logging into AppScan Source

About this task

Refer to the section below for a description of the fields requested when you log in. For detailed information, see Logging in to AppScan Enterprise Server from AppScan Source products.

Procedure

  • User ID: Specify your user ID.
  • Password: Specify the password for your user ID.
  • AppScan Enterprise Server: Specify the hostname for your AppScan Enterprise Server instance in the existing URL format. If the AppScan Enterprise Server is located on the same machine, specify https://localhost:9443/ase/ or localhost. If the AppScan Enterprise Server is located on a remote machine, specify the fully-qualified host name of the machine on which it is installed.
    Tip: If the fully-qualified host name does not work, try entering the IP address of the host machine.