Access Control Web Interface (v2.0 and up)
The subsequent pages pertain to the Access Control Web interface:
Customizing the Access Control Web Interface (v2.1 and up)
Access Control allows customizing the login page by replacing the logo and the login banner with image files of your own as explained below.
Notice
Customizing the logo and the login banner is available for Access Control CxSAST 9.0 HF18, CxSAST 9.2 10 and above.
To ensure the best quality and to match the default banner image, the login banner's image size should be 1440x1080. It must be in *.JPG format.
To ensure the best quality and to match the default logo image, the logo image size should be 1094x180 and must be in *.PNG format.
To replace the login banner:
1. Make your new banner image available in a folder of your choice and assign the name cx-background.jpg to it.
2. Go to the Images folder of your Access Control installation, located at <installation_path>/AccessControl/wwwroot/images, usuallyC:\Program Files\Checkmarx\Checkmarx Access Control\wwwroot\images.
3. Add cx-background.jpg to that folder.
4. Open your browser, clear the cache and reload as explained below for the various supported operating systems.
To replace the logo:
1. Make your new logo available in a folder of your choice and assign the name cx-logo.png to it.
2. Go to the Images folder of your Access Control installation, located at <installation_path>/AccessControl/wwwroot/images, usuallyC:\Program Files\Checkmarx\Checkmarx Access Control\wwwroot\images.
3. Add cx-logo.png to that folder.
4. Open your browser, clear the cache and reload as explained below for the various supported operating systems.
To reload your browser:
Windows: Press <CTRL> + <F5>
Mac/Apple: Press <Apple> + <R> or <command> + <R>
Linux: Press <F5>
Accessing the Access Control Web Interface (v2.0 and up)
Access Control User Administrator Login
Notice
For upgrade installations, existing users can login using their former credentials.
Upon a successful, first-time installation of Access Control, first you will be required to create an Administrator user account. The Admin user, who will be a member of the CxServer Team (the top level in the hierarchy) will have complete permissions for managing all applicable users, roles, teams, server settings, and projects.
To access the Access Control Administrator user login:
Point your browser to http://<SAST server>:<port> where the Access Control port is as defined in the installation, or can be located in the log: <protocol>://<machine>/CxRestAPI/authTest/, e.g., https://localhost/CxRestAPI/authTest/.
![]() |
Enter the required Administrator user account information:
Field | Description |
---|---|
First & Last Name | Full name for the Administrator user |
Username | User name for the Administrator user as defined for sign-in |
Email address for the Administrator user | |
Password | Unique password as defined for the Administrator user sign-in. The same password must be retyped to confirm. |
Click Register. You will now be taken directly to the Checkmarx Login.
Checkmarx Login
The Login page enables signing in to Access Control by:
Application (Application User) – A user account created and managed only in the Checkmarx product.
Directory User – A user accessing the Checkmarx product, being managed by the LDAP or domain server.
SAML SSO – A user with SAML configured will see one button (per SAML instance) to sign in with SAML SSO.
Windows SSO – If the server has LDAP SSO configured, a sign-in option for using Windows SSO is provided.
![]() |
Field | Description |
---|---|
User name | User name, as defined for Administrator user login |
Password | Unique password, as defined for the user login. Same password must be retyped to confirm. |
Sign in method | Select a sign in method: Application, the name of any configured LDAP/SAML/domain server(s) |
Login | After selecting the sign in method, click Login. |
Windows SSO | If the server has LDAP SSO configured, you can login using Windows Single-Sign-On (no user name / password needed). |
SAML SSO | If SAML is configured, you can login using SAML Single-Sign-On (no user name / password needed). For details on SAML SSO configuration, see here. |
Once the Checkmarx Login window is displayed, enter the user login credentials and select a sign in method, then click Login (or sign in using Windows SSO or SAML SSO).
Forgot Password
[For Application users only]: If you forgot your password, simply click Forgot Password on the login screen and Access Control will send you an email with a link to reset your password. This link is valid for 24 hours. If the time frame has expired to reset your password, click Forget Password once again to repeat the process.
![]() |
Notice
The ‘Forgot Password’ option is only relevant if an SMTP server is already configured in the system, as an email with a ‘reset password’ link will be sent to the registered account.
Users without valid emails configured in the system should have a user with User Manager permissions reset the password for them.
Getting to Know the Access Control Web Interface (v2.0 and up)
Once you have logged in to Access Control, the Access Control page is displayed.
Notice
Without any role yet assigned, a user will only be able to see the My Profile tab. See Access Control - My Profile Tab (v2.0 and up) .
Interface texts will be translated according to the Locale selected in My Profile. See Access Control - My Profile Tab (v2.0 and up) .
The Access Control page provide user management and access control settings. This page is divided into five areas of attention (Teams, Users, Roles, Settings and My Profile), each with its own navigation tab.
![]() |
Logout
To logout from Access Control, click and select Logout.