To log in to Contrast, you must accept an email invitation generated by your Administrator during onboarding. Once you accept this invitation, you're taken to Contrast to log in for the first time.
To change your account password, complete the following steps:
Note: Your new password which must adhere to the Password Policy set by your Administrator. Contrast notifies you of their requirements as you type it in the New Password field.
You must use this password the next time that you log in to Contrast.
Note: Customers using Single Sign-On (SSO) don't have this option.
If your administrator has enabled two-step verification, you can add an extra layer of protection beyond your username and password. Complete the following steps to enable the feature:
If you choose to receive your verification codes by email, Contrast sends you a verification code to enter on the following configuration screen.
If you select Google Authenticator, Contrast provides QR code with further instructions. You can scan the QR code, enter the code manually or use the provided dropdown to select the device type. Use the Google Authenticator application to obtain a verification code and validate your device.
Before completing two-step verification setup, you can download a set of backup codes in the form of a .txt file, which allows you to login if you encounter an error or get locked out of your account. You must download and save these codes in a secure location.
If you want to change the way you receive verification codes, you can reconfigure notification settings in the Two-Step Verificationtab. Once you change your selection, Contrast automatically issues a new set of backup codes. It's not necessary to save your changes.
View your Contrast profile settings to verify or update the information that you provided when you created an account. Contrast also offers a few additional, optional fields that you can fill out to help other organization members learn more about you and also help Contrast tailor your experience in the application. To visit your Profile page, click on the caret beside your username, and select Your Account in the dropdown user menu.
In the General Information section, use the form fields to modify your basic account information, such as your name or time zone. Click on the thumbnail to upload a new profile image. (You can use an image of your own or choose one of the Contrast Cats.)
Go to the Your Keys section to view your Organization Keys, including your API key and Organization ID, and your Personal Keys, including your Service key. To rotate your service key, click the link provided. You can also click the button to Generate Sample API Request. To view examples of API requests, go to the Contrast API documentation.
Contrast offers guidance on new improvements in the latest release as you navigate the application. The What's New tab on your dashboard notifies you of new or updated features, while Quick Tips provide guidance for new functionality as you use a feature.
Note: You can also navigate to the latest Release News from the user menu.
Notifications provide a mechanism for Contrast users to be alerted to specific situations, such as the discovery of a vulnerability or an attack on an application. Contrast offers several out-of-the-box notifications with settings that you can tailor as needed.
There are two primary channels available for notifications: Email and In Contrast.
To change your notification settings, log in to Contrast, and go to the User menu > Your Account > Notifications tab. Click in the Subscriptions field to choose the application(s) for which you want to receive notifications; the default selection is "All Applications". Use the toggles in the In Contrast and Email columns to enable or disable the following subscriptions.
Note: Click on the link at the top of the configuration form to Restore Defaults.
The Permissions page provides a detailed view of the assigned permissions for both the organization and the applications to which you have access. To see your permissions, complete the following steps.
Your organization is listed at the top of the page along with your organization role. The Application Permissions grid communicates your role for each application within the organization. Click the help icon next to each role for details on the data access and actions made available by each level.
Create a customized header and footer for your Contrast account with your choice color, text and more style options.
Complete the following steps to use HTML to customize the header, footer or both for your account. The height of every header is set at 24 pixels for Enterprise-on-Premises (EOP) users or 75 pixels for SaaS users. The height of every footer is set at 75 pixels.
<... style="".../>) for the following attributes: "font-family", "background-color", "color", "font-size" and "text-decoration".
alignwith the following values: "center", "left", "right" and "justify".
Example: <... style="font-size:20px;color:white" align="center">Your custom text here .../>
To edit the header and footer files, update the HTML in the files and Save your changes. To remove the header, comment out the HTML you added or leave the file empty.