Skip to main content

Access Control Web Interface (v2.0 and up)

The subsequent pages pertain to the Access Control Web interface:

Customizing the Access Control Web Interface (v2.1 and up)

Access Control allows customizing the login page by replacing the logo and the login banner with image files of your own as explained below.

Notice

  • Customizing the logo and the login banner is available for Access Control CxSAST 9.0 HF18, CxSAST 9.2 10 and above.

  • To ensure the best quality and to match the default banner image, the login banner's image size should be 1440x1080. It must be in *.JPG format.

  • To ensure the best quality and to match the default logo image, the logo image size should be 1094x180 and must be in *.PNG format.

To replace the login banner:

1. Make your new banner image available in a folder of your choice and assign the name cx-background.jpg to it.

2. Go to the Images folder of your Access Control installation, located at <installation_path>/AccessControl/wwwroot/images, usuallyC:\Program Files\Checkmarx\Checkmarx Access Control\wwwroot\images.

3. Add cx-background.jpg to that folder.

4. Open your browser, clear the cache and reload as explained below for the various supported operating systems.

To replace the logo:

1. Make your new logo available in a folder of your choice and assign the name cx-logo.png to it.

2. Go to the Images folder of your Access Control installation, located at <installation_path>/AccessControl/wwwroot/images, usuallyC:\Program Files\Checkmarx\Checkmarx Access Control\wwwroot\images.

3. Add cx-logo.png to that folder.

4. Open your browser, clear the cache and reload as explained below for the various supported operating systems.

To reload your browser:

  • Windows: Press <CTRL> + <F5>

  • Mac/Apple: Press <Apple> + <R> or <command> + <R>

  • Linux: Press <F5>

Accessing the Access Control Web Interface (v2.0 and up)

Access Control User Administrator Login

Notice

For upgrade installations, existing users can login using their former credentials.

Upon a successful, first-time installation of Access Control, first you will be required to create an Administrator user account. The Admin user, who will be a member of the CxServer Team (the top level in the hierarchy) will have complete permissions for managing all applicable users, roles, teams, server settings, and projects.

To access the Access Control Administrator user login:

Point your browser to http://<SAST server>:<port> where the Access Control port is as defined in the installation, or can be located in the log: <protocol>://<machine>/CxRestAPI/authTest/, e.g., https://localhost/CxRestAPI/authTest/.

6436225872.jpg

Enter the required Administrator user account information:

Field

Description

First & Last Name

Full name for the Administrator user

Username

User name for the Administrator user as defined for sign-in

Email

Email address for the Administrator user

Password

Unique password as defined for the Administrator user sign-in.

The same password must be retyped to confirm.

Click Register. You will now be taken directly to the Checkmarx Login.

Checkmarx Login

The Login page enables signing in to Access Control by:

  • Application (Application User) – A user account created and managed only in the Checkmarx product.

  • Directory User – A user accessing the Checkmarx product, being managed by the LDAP or domain server.

  • SAML SSO – A user with SAML configured will see one button (per SAML instance) to sign in with SAML SSO.

  • Windows SSO – If the server has LDAP SSO configured, a sign-in option for using Windows SSO is provided.

6436225875.jpg

Field

Description

User name

User name, as defined for Administrator user login

Password

Unique password, as defined for the user login.

Same password must be retyped to confirm.

Sign in method

Select a sign in method: Application, the name of any configured LDAP/SAML/domain server(s)

Login

After selecting the sign in method, click Login.

Windows SSO

If the server has LDAP SSO configured, you can login using Windows Single-Sign-On (no user name / password needed).

SAML SSO

If SAML is configured, you can login using SAML Single-Sign-On (no user name / password needed). For details on SAML SSO configuration, see here.

Once the Checkmarx Login window is displayed, enter the user login credentials and select a sign in method, then click Login (or sign in using Windows SSO or SAML SSO).

Forgot Password

[For Application users only]: If you forgot your password, simply click Forgot Password on the login screen and Access Control will send you an email with a link to reset your password. This link is valid for 24 hours. If the time frame has expired to reset your password, click Forget Password once again to repeat the process.

6436225878.jpg

Notice

  • The ‘Forgot Password’ option is only relevant if an SMTP server is already configured in the system, as an email with a ‘reset password’ link will be sent to the registered account.

  • Users without valid emails configured in the system should have a user with User Manager permissions reset the password for them.

Getting to Know the Access Control Web Interface (v2.0 and up)

Once you have logged in to Access Control, the Access Control page is displayed.

Notice

The Access Control page provide user management and access control settings. This page is divided into five areas of attention (Teams, Users, Roles, Settings and My Profile), each with its own navigation tab.

6436225972.jpg

Logout

To logout from Access Control, click 6436225966.png and select Logout.