Versions Compared
Key
- This line was added.
- This line was removed.
- Formatting was changed.
📙 You will learn
How to create a token and add NowSecure as a remote provider in ThreadFix.
Prerequisites
Audience: IT Professional or End User
Difficulty: Basic
Time needed: Approximately 5 minutes
Tools required: NowSecure Account
ThreadFix introduced NowSecure Integration in version 3.0.7
Adding NowSecure as an integration with ThreadFix is a simple process requiring a user to generate an authorization token in NowSecure and create NowSecure as a remote provider within ThreadFix which can then have applications mapped to it.
Generate Token
Log into NowSecure. From the user account options, select Profile & Preferences.
From the Profile tab, enter a name into the Token Name field. Click the Create button.
A unique token will be generated. Copy and save this token as it will not be displayed elsewhere again.
NowSecure Remote Provider
With a Token created and copied, a new provider can be created for NowSecure.
From the Navigation sidebar, expand the Application menu and click on the Integrations sub-menu. Select the Remote Providers page and from the same tab click the Create New Provider button.
In the Create New Provider modal, from the Type drop-down menu select NowSecure. Fill the Name and API URL fields (the latter is https://lab-api.nowsecure.com)
Paste the Token, previously created in NowSecure, into the Auth Token field. Click the Create Provider button.
The new provider will be created and added to the list of Remote Providers in the same tab.
Click on the new provider to expand its details view. To associate applications with it click the Create ThreadFix Applications button.
A Create Applications modal will display. The modal will display ThreadFix applications that will map to the NowSecure remote provider application along with drop-down lists allowing selectable Teams to be associated per application. After selecting any desired pairings, click the Create Applications button.
Note the application examples below were all associated with Data Collection Apps from the Teams.
From the NowSecure provider, click the Import All Scans button to initiate a scan import process. This may take a few minutes.
Once the import process has completed, navigate to a desired application to view vulnerabilities.
Table of Contents
Table of Contents |
---|