Contents x
    HCL AppScan
    • 13 Apr 2025
    • 2 Minutes to read
    • Print
    • Dark
      Light
    • PDF
    Contents

    HCL AppScan

    • Updated on 13 Apr 2025
    • 2 Minutes to read
    • Print
    • Dark
      Light
    • PDF
    Article summary

    HCL AppScan is an application security tool that provides vulnerability assessment and management.

    Types of Assets Fetched

    This adapter fetches the following types of assets:

    • Business Applications

    Parameters

    1. Host Name or IP Address (required) - The hostname or IP address of the HCL AppScan server that Axonius can communicate with via the Required Ports.

    2. User Name and Password (required) - The credentials for a user account that has permission to fetch assets.

    3. Verify SSL - Select whether to verify the SSL certificate of the server against the CA database inside of Axonius. For more details, see SSL Trust & CA Settings.

    4. HTTPS Proxy (optional) - Connect the adapter to a proxy instead of directly connecting it to the domain.

    5. HTTPS Proxy User Name (optional) - The user name to use when connecting to the value supplied in Host Name or IP Address via the value supplied in HTTPS Proxy.

    6. HTTPS Proxy Password (optional) - The password to use when connecting to the server using the HTTPS Proxy.

    To learn more about common adapter connection parameters and buttons, see Adding a New Adapter Connection.

    HCL AppScan.png

    Advanced Settings

    Note:

    Advanced settings can either apply to all connections for this adapter, or to a specific connection. Refer to ​Advanced Configuration for Adapters.

    1. Fetch BusinessApplications from Applications Endpoint (default: true) * - By default this adapter fetches business applications from the Applications Endpoint. Toggle off to not fetch business applications from the Applications Endpoint. When this setting is enabled, the setting below may be configured.
      • Enrich Applications Endpoint with Application Components Endpoint - Toggle on to enrich the Applications Endpoint with the Application Components Endpoint. When this setting is enabled, the setting below may be configured.
        • Enrich Application Components Endpoint with Recommendations Endpoint - Toggle on to enrich the Application Components Endpoint with the Recommendations Endpoint.
    2. Fetch RepositoryVulnerabilities from Issues Endpoint - Toggle on to fetch repository vulnerabilities from the Issues Endpoint. When this setting is enabled, the setting below may be configured.
      • Enrich Issues Endpoint with Recommendations Endpoint - Toggle on to enrich the Issues Endpoint with the Recommendations Endpoint.
    Note:

    To learn more about Adapter Configuration tab advanced settings, see Adapter Advanced Settings.

    APIs

    Axonius uses the AppScan Enterprise REST APIs.

    Required Ports

    Axonius must be able to communicate with the value supplied in Host Name or IP Address via the following ports:

    • TCP port 443

    Supported From Version

    Supported from Axonius version 6.1.62


    Was this article helpful?
    What's Next