Enable Protect

Important

  • Organization Administrators must have Protect enabled before they can enable Protect for other users. A SuperAdmin can enable Protect for Organization Administrators.

  • Organization Administrators and RulesAdmins can automatically apply Protect licenses for all new servers.

  • On-premises customers: SuperAdmin, ServerAdmin or System Administrator roles can enable Protect for an entire organization, as well as set up who can access Protect data.

  • To use Protect for applications, ensure they are instrumented and the servers hosting them have a Protect license.

To enable Protect:

  1. Log in to Contrast.

  2. Organization Administrators: Ensure users can enable Protect. Use the following procedure to do this:

    1. In the user menu, select Organization Settings.

    2. In the left navigation, select Users.

    3. For each user who needs to enable Protect for other users, turn on the Protect toggle (green).

    4. To have the new setting take effect, tell users to log out of Contrast and log in again.

  3. Select Servers in the header.

  4. Either scroll or select the search icon at the top of the page to find the servers for which you want to enable Protect.

    Turn the toggle on (green) to enable Protect. Use any of the following methods to enable Protect:

    • Select the toggle in the Protect column of the list of servers.

    • Select the server name to view information about that Server, and use the toggle there.

    • Under organization settings, select Server and use the Protect toggle there.

  5. If your application isn't licensed, follow the prompts to apply a license.

  6. Restart. the instrumented application to have Protect take effect. Once that's complete, Contrast starts monitoring and blocking attacks.

  7. To verify that Protect is enabled for all applications on a specific server, in the Servers tab, select the server and then select Overview.

    Note

    A server can show it has Protect enabled, while an individual application that it hosts might have been manually configured to not be instrumented for Protect and is not covered.

    If Protect is not enabled for one or more applications, a warning icon displays next to the Protect toggle. The Statistics section contains a list of application that the selected server is hosting. If one or more of the applications does not have Protect enabled, a warning icon displays next to the application.

    To enable Protect for the application, update the application configuration files, instrument the application, and then restart it.

  8. To determine if Protect is enabled for a selected application on all servers that are hosting it, use the following procedure:

    1. Select Applications in the header.

    2. Select an application.

    3. In the Overview tab, find the Protect label.

      The number of hosting servers where Protect is enabled for the application displays as n of n (for example 1 of 2).

    4. To determine whether Protect is enabled for the application on a specific server, click the Protect status indicator. If Protect is not enabled for the application on a specific server, a warning icon displays next to the application name.

      To enable Protect for the application, update the application configuration files, instrument the application, and then restart it.