Adding or Editing Credentials
Credentials are necessary for Sentinel to have the ability to scan sites that require users to log in for access. WhiteHat Security recommends that at least two sets of credentials be entered for each such site, with the second set being used should the first set fail. These should not be the credentials of any existing user.
To add, edit, or delete credentials, go to the Site Details page from the Assets tab and select the Scan or the Services subtab. Under the Scan subtab, you can enter or edit scanning credentials; under the Services subtab you can add or edit credentials to be used in a Business Logic Assessment.
Adding Scanning Credentials
To add Scanning Credentials from the Site Details page, perform the following steps:
-
Select the Scan subtab.
-
Click Add Credentials.
-
Type the Credential label in the text field provided, for your own reference.
-
Provide Primary login information, which includes:
-
Username
-
Password
-
Login Entrance URL
-
Destination URL
-
-
Add any additional Login Notes required for this set of credentials.
-
We strongly recommend including a Backup login as well.
-
When you have populated all information fields, click Save to save this set of credentials.
Editing Scanning Credentials
To edit existing credentials, perform the following steps:
-
Click the down arrow next to the credentials you want to edit.
-
Click Edit to enable editing.
-
Click Save to keep the changes made.

Adding, Editing, or Disabling Business Logic Assessment Credentials
Adding Credentials
For sites covered under the Sentinel Premium (PE) service, you can manage your BLA credentials directly in Sentinel.
-
Click on Add Credential to add site credentials. If you are using a stand-alone BLA license for a site that is covered under the Sentinel Standard (SE) service, please contact WhiteHat Security with your credential information.
-
To create BLA credentials, you must first type a name for the credential. This displays on the Services tab.
-
Provide Primary login information, which includes:
-
Username
-
Password
-
Login Entrance URL
-
Destination URL
-
-
Add any additional notes required for this set of credentials.
-
We strongly recommend including a Backup login as well.
-
When you have populated all information fields, click Save to save this set of credentials.
For information about using SMS-based two-factor authentication for assessments, see SMS-Based Two-Factor Authentication. |
Editing BLA Credentials
To edit BLA credentials, perform the following steps:
-
Click the down arrow next to the credentials you want to edit.
-
Click Edit to enable editing.
-
Click Save to keep the changes made.

Disabling BLA Credentials
-
To disable a given set of credentials, select that set and click on Disable Credentials.
-
Select the Confirm icon to remove the selected credential.
Disabled credentials will no longer be used for Business Logic Assessments. Please replace any credentials being disabled to ensure that your BLA can be completed appropriately.
Setting Up Email Notification for BLA Status Changes
If you would like to receive email notification for particular BLA status changes, you can set that in your Profile.