IBM AppScan Enterprise Scanner Overview
JSA retrieves AppScan Enterprise reports with the Representational State Transfer (REST) web service to import vulnerability data and generate offenses for your security team. AppScan Enterprise.
You can import scan results from IBM Security AppScan Enterprise report data, providing you a centralized security environment for advanced application scanning and security compliance reporting. You can import IBM Security AppScan Enterprise scan results to collect asset vulnerability information for malware, web applications, and web services in your deployment.
To integrate AppScan Enterprise with JSA, you must complete the following tasks:
Generate scan reports in IBM AppScan Enterprise.
Report configuration information can be found in your IBMAppScan Enterprise documentation.
Configure AppScan Enterprise to grant JSA access to report data.
Configure your AppScan Enterprise scanner in JSA.
Create a schedule in JSA to import AppScan Enterprise results.
To configure IBM AppScan Enterprise to grant permission to report data, your AppScan administrator must determine which users have permissions to publish reports to JSA. After AppScan Enterprise users configure reports, the reports that are generated by AppScan Enterprise can be published to JSA, making them available for download.
To configure AppScan Enterprise to grant access to scan report data, see Creating a Customer User Type for IBM AppScan Enterprise.