Configuring sensors

After you install the Fortify ScanCentral SAST sensors, you can encrypt shared secrets and configure sensor settings such as the connection and read timeouts, sensor expiration time, job cleanup timing, and more.

To configure a sensor:

1. On the sensor machine, open the <sast_install_dir>/Core/config/worker.properties file in a text editor.

2. Configure the properties described in the following table.

   Sensor property	Description
   worker_auth_token	Specifies a worker authentication token string that contains no spaces or backslashes to secure the Controller for use by authorized sensors only. Set the same value for the worker_auth_token property that you set for the worker_auth_token property on the Controller. If you prefer not to use plain text, you can use an encrypted shared secret as the value for this property. For instructions on how to encrypt a shared secret, see Encrypting the shared secret on a sensor.
   pwtool_keys_file	Specifies the path to a file with pwtool keys. If encrypted passwords are used, this must specify a file with the pwtool keys used to encrypt the passwords. For more information, see Encrypting the shared secret on a client.
   jobs_dir	Specifies the directory where the job files are created. For more information about customizing persistence for generating job files, see Configuring where to generate job files and the worker_persist.properties file.
   props_dir	Specifies where to save the worker_persist.properties file. For more information, see Configuring where to generate job files and the worker_persist.properties file.
   delete_sca_build_dir	Specifies whether to delete the temporary working directory after a scan is complete. This temporary directory is used to unpack the project package and store temporary files. For more information, see Preserving the OpenText SAST project root directory.
   restapi_connect_timeout	Specifies the Controller connection timeout (in milliseconds). The default value is 10000 (or 10 seconds). You can use this, and the restapi_read_timeout property to resolve timeout errors between the Controller and the sensor.
   restapi_read_timeout	Specifies the Controller read timeout (in milliseconds). The default value is 30000 (or 30 seconds). You can use this, and the restapi_connect_timeout property to resolve timeout errors between the Controller and the sensor.
   worker_cleanup_age	Specifies the age (in hours) job files must be before they are removed from the sensor working directory. For more information, see Configuring job cleanup timing on sensors.
   worker_cleanup_interval	Specifies the frequency (in hours) with which the cleanup process runs. For more information, see Configuring job cleanup timing on sensors.

See also

Configuring proxies for clients and sensors

This section contains the following topics:

• Configuring sensor properties
• Encrypting the shared secret on a sensor
• Setting the maximum run time for scans
• Changing sensor expiration time
• Configuring sensors for remote translation of .NET languages
• Configuring sensors to use the progress command when starting on Java
• Configuring where to generate job files and the worker_persist.properties file
• Configuring job cleanup timing on sensors