Skip to main content

Enable Assess

You can use configuration files, variables, or the Contrast web interface to configure the Assess setting. This procedure describes how to enable Assess in the Contrast web interface. YAML configuration and Environment variables describe how to use methods outside of the web interface to configure agent settings.

Before you begin

  • Although you can see the types of vulnerabilities that Contrast discovers without an Assess license, you won't be able to retrieve any details unless you apply licenses to applications.

Steps

  1. Log in to Contrast.

  2. Select Servers in the header.

  3. Either scroll or use the search at the top of the page to find the servers associated with the applications you want to analyze with Assess.

  4. To manage the Assess setting for specific servers in the Contrast web interface, use either of these methods:

    • In the Servers list, select the setting in the Assess column.

    • In the Servers list, select a server name to open its detailed view and use the Assess setting there.

    Note

    • If you use only the Contrast web interface to turn Assess on or off, the Assess setting is green if ON and gray if OFF. You can change this setting in the Contrast web interface.

      ProtectFiltersWeb.png
    • If you used a method external to the Contrast web interface to configure the setting for Assess (for example, an agent configuration file), the setting is green but disabled if ON and grey but disabled if OFF. You cannot change this setting in the Contrast web interface.

      ProtectWebDisabled.png
    • If the setting in the Contrast web interface is disabled, hover over the setting to see where it is configured. The order of precedence determines which setting Contrast uses as the effective configuration.

  5. To To determine if an application is using Assess on each server associated with it, go to the Applications page:

    1. Select Applications in the header.

    2. Select an application.

    3. In the Overview tab, under each environment, if at least one server has Assess turned on, the bar next to the Assess setting indicates the Assess status for all servers associated with the application. A green bar represents the number of servers that have Assess turned on. A white bar represents the number of servers that have Assess turned off.

      Image shows the bar indicating that servers have Assess enabled.

      If no servers have Assess turned on, you see an OFF icon (Image shows icon for Off status, indication no servers have Assess or Protect turned on).

    4. To see if the application is configured to use Assess for each server associated with it, select a section of the Assess setting bar to open a filtered view of the Servers list.

      Image shows a server list with the servers, applications, and Assess setting highlighted.
  6. To set a default Assess setting for new servers, from the user menu, select Organization settings > Servers and use the Assess setting there.

  7. If the application you want to analyze with Assess is unlicensed, add a license to it:

    1. Select Applications in the header.

    2. Select Unlicensed next to the application name

    3. In the Apply License window, select Apply license.

    4. Restart the application server to ensure the Contrast agent instruments your application with Assess capabilities. Once that's complete, Contrast begins to receive vulnerability analytics. The application no longer has Unlicensed next to it, which means there is an Assess license assigned to it.

    Note

    Organization Administrators can configure a default setting that applies Assess licenses automatically to new applications rather than applying licenses manually for every application.

    1. Under organization settings, select Organization.

    2. In Licenses, under Assess, select Automatically apply licenses to new applications.