Viewing ScanCentral Logs

To retrieve the ScanCentral Controller Server that receives the Fortify Static Code Analyzer mobile build sessions and scan instructions from the ScanCentral SAST clients (or project packages with translation and scan instructions), routes the information to ScanCentral SAST sensors, and (optionally) uploads scan results (FPR files) to Fortify Software Security Center. log, navigate to <controller_dir>\tomcat\logs\scancentralCtrl.log.

To view the ScanCentral client Requesting program or user in a client/server relationship. For example, the user of a web browser is effectively making client requests for pages from servers all over the web. The browser itself is a client in its relationship with the computer that is getting and returning the requested HTML file. The computer handling the request and sending back the HTML file is a server. and sensor logs on a Windows system:

• Navigate to %FORTIFY_HOME%\scancentral-<version>\log, where %FORTIFY_HOME% is %LOCALAPPDATA%\Fortify.

  On Windows 10, for example, the location is

  C:\Users\<user>\AppData\Local\Fortify\scancentral-<version>\log

• To retrieve the ScanCentral SAST log on a Linux system, navigate to
  ~/.fortify/scancentral-<version>/log/scancentral.log.

To retrieve the Fortify Software Security Center log, navigate to
<fortify.home>/<app_context>/logs.

Enabling Debugging on Clients and Sensors

To enable debug logging on ScanCentral SAST clients and sensors, use the -debug command-line option. (See Global Options.)