Enabling the running and management of OpenText ScanCentral DAST scans
OpenText ScanCentral DAST is a dynamic application security testing tool that consists of the OpenText DAST sensor service and other supporting technologies that you can use in conjunction with Application Security.
To enable integration with OpenText ScanCentral DAST, you need to do the following in Application Security:
Create a service account for OpenText ScanCentral DAST to authenticate with Application Security. For instructions on how to use this service account in the OpenText ScanCentral DAST deployment, see the OpenTextâ„¢ ScanCentral DAST Configuration and Usage Guide. The service account must meet the following requirements:
The account must be a local user account that has the Administrator role. Do not use an externally-managed account such as an LDAP- or SCIM-based user account.
The account must be a dedicated account that is only used for the integration of OpenText ScanCentral DAST and Application Security. Do not use the account for access by an OpenText ScanCentral DAST user.
Enable OpenText ScanCentral DAST integration in Application Security by doing the following:
- Sign in to Application Security as an Administrator.
- On the header, select Administration.
On the navigation pane, expand Configuration, and then select ScanCentral DAST.
- On the ScanCentral DAST page, select the Enable ScanCentral DAST check box.
In the ScanCentral DAST server URL box, type your OpenText ScanCentral DAST server URL.
The OpenText ScanCentral DAST server URL should resemble one of the following:
http://<DAST_API_Host>:<port>/api/http://<DAST_API_IP>:<port>/api/You can use the https protocol instead.
Ensure that you include the trailing
/api/in the URL.- Click SAVE.
See the OpenTextâ„¢ ScanCentral DAST Configuration and Usage Guide for information about how to perform the following tasks:
- Manage OpenText ScanCentral DAST sensors and sensor pools
- Create, run, change, and delete OpenText ScanCentral DAST scans, schedules, and settings