Adding Your API
This section provides instructions on how to add an API to your asset. To add an API:
In the main WhiteHat Portal toolbar, select the the Assets tab to open the Asset Management page.
Click the Add Asset button.
Select Add API from the dropdown list.
Review the Licenses Available section and if more licenses are required, an administrator can click Request More Licenses. This creates a Salesforce case regarding your license request.
In the Add API screen, populate the fields with information about the API that you are adding.
Field No. Field Name Description
This is the name that you wish to use for the API, which will display in list of assets on the Asset Management screen.
Primary Hostname URL
This is the URL used to call the API.
This is required so that the Peer Benchmarking Dashboard provides information relevant to your company and its industry.
Additional information from WhiteHat
You can include information here for Synopsys' reference. Please note that this information will not be displayed in the WhiteHat Portal or available through the API.
You will need to download and configure a satellite appliance on the Appliance Management screen before onboarding an internal asset.
Custom Asset ID
This is used if you have an asset ID that you wish to associate with the API. It’s displayed in reports after the Asset Name.
The asset priority that you select will impact the rating displayed for vulnerabilities found on the API. None means that there will be no adjustment to the rating displayed.
This can be used to limit the number of requests per second made to the API.
Information typed in this field is displayed in the WhiteHat Portal and is available through the WhiteHat API.
There are two options to choose from for scan scheduling. Choose between the following:
Click Skip and Create Now to add the asset with the default scan schedule selected. If you select this option, you have now completed adding your API.
Click Next to proceed to select a scan schedule.
Select a scan schedule from the Schedule dropdown options:
Continuous (default selection)
Nights 8P-6A, and Weekends 24hrs
Scan Once Now
Select a time zone from the Time Zone dropdown. Your local time zone is selected by default.
Click on Create Now to add the API as an asset.
An information message is displayed to remind you that full scanning will not start until you have configured endpoints for the API. Click OK to acknowledge the message.
Once you have added the API as an asset, Sentinel displays a message to tell you that the asset was created successfully. If any errors were encountered during asset creation, these error messages are displayed along with associated remedial information. You can close this message by clicking on the X.
|Your next step is API Configuration.|