Summary
This article discuses how to submit your login credentials from within your Deep Security for Web Apps account in order for Trend Micro to perform an authenticated scan.
Details
To update your web app request with your login credentials:
- Go to the Deep Security for Web Apps console.
- Click the Administration tab. On left column, click Web Applications.
- On the Web Applications page, click the URL of the web application that you want to edit.
If your users must sign in to access parts of your web application, use the Authenticated Scanning section to specify the login credentials that Deep Security for Web Apps can use when performing scans.
- To specify new authentication information, click Enable. In the window that appears, select the Authentication Type used by your web application, either Form-based Authentication or Basic Authentication and then click Continue. The window that appears next will vary depending on the type of authentication that you selected:
- If you selected Form-based Authentication, enter the following information and then click Finish:
- Login URL: The URL of the authentication form.
- Logout URL: (Optional) If your web application has logout URL, provide it here. This will prevent Deep Security for Web Apps from accidentally logging out during a scan.
- Form Fields: (Optional) Click Fetch. Deep Security for Web Apps parses the HTML of your login page and gets a list of the input fields that it contains. To remove a field from the list, click the Xbutton next to it. To add a field that was not fetched automatically, click the plus (+) button. In the Field Value column, enter values that Deep Security for Web Apps can use to log in to the web application. If you do not want to display a value in plain text in the Deep Security for Web Apps console (for example, for a password field), select Hide.
- Submit Type: (Optional) Specifies how the form is submitted. In the first drop-down list, select Button, Image, Link, or JavaScript. If you selected Button, Image, or Link, choose ID, Name, or Class from the second drop-down list and in the third box, enter its value. If you selected JavaScript, enter the JavaScript-related code (including the tags) for the submit action in the box that appears.
- If you selected Basic Authentication, enter this information and then click Finish:
- Login URL: The URL of the authentication page.
- Logout URL: (Optional) If your web application has logout URL, provide it here. This will prevent Deep Security for Web Apps from accidentally logging out during a scan.
- User Name: User name that Trend Micro can use to log in and perform scanning.
- Password: Password that Trend Micro can use to log in and perform scanning.
- If you selected Form-based Authentication, enter the following information and then click Finish:
To update the authentication information for authenticated scanning:
If you previously entered authentication information, it appears in the Authenticated Scanning section. To update the information, click Edit, make the changes and then click Finish. To disable authentication, click Disable and then click Yes in the confirmation box that appears.
You also need to whitelist the Trend Micro IP addresses so they are not blocked by an IPS or firewall.
- Automated scanning are from the following IPs: 150.70.188.20 to 150.70.188.3.
- Expert manual testing are from the following IPs: 111.93.93.210 to 111.93.93.214
