Configuring proxies for clients and sensors

If all your outbound traffic must go through a proxy, you can configure one for your Fortify ScanCentral SAST clients.

To configure proxies for clients and sensors:

  1. Go to the <client_install_dir>/Core/config/ directory, and, in both the client.properties and worker.properties files, uncomment, and then set values for the properties listed in the following table.

    Property Description

    ctrl_proxy_host

    		 Type the name of the Controller proxy host.
    ctrl_proxy_port Type the Controller proxy port number.

    ctrl_proxy_user

    		 If authentication is required, type a user name.

    ctrl_proxy_password

    		 If authentication is required, type the password for the proxy user.

    ssc_proxy_host

    		 Type the name of the Fortify Software Security Center proxy host.

    ssc_proxy_port

    		 Type the number of the Fortify Software Security Center proxy port.

    ssc_proxy_user

    		 If authentication is required, type the proxy user name.

    ssc_proxy_password

    		 If authentication is required, type the password for the proxy user.

  2. Save and close the client.properties and worker.properties files.

  3. To enable proxy authentication when the Controller is running under HTTPS, add the -Djdk.http.auth.tunneling.disabledSchemes Java property to the SCANCENTRAL_VM_OPTS environment variable by typing one of the following commands:

    • On a Windows system: set SCANCENTRAL_VM_OPTS=-Djdk.http.auth.tunneling.disabledSchemes

    • On a Linux system: export SCANCENTRAL_VM_OPTS=-Djdk.http.auth.tunneling.disabledSchemes