Logging in to Checkmarx One
To be able to perform initial login for Checkmarx One, first a Tenant is needed to be created by Checkmarx.
A Tenant is a dedicated account per customer.
Once the Tenant is successfully created, a Welcome email will be sent to the administrator.
The Welcome email contains the following information:
Username (For the administrator initial log in).
Account name (Tenant name)
Link to Checkmarx One.
New User Workflow
After the creation of a new tenant, the Admin user will get an Email for the initial login and setup a new password (the link redirects to the Identity and Access Management).
The Admin logs in to Checkmarx One using the procedure described in Initial Log in.
After completing the initial setup process the Admin user will be able to create new users as described in User Management and Access Control (see video below).
The Admin will give the new user his credentials (via mail or anything else).
The user will log in to Checkmarx One (EU: http://eu.ast.checkmarx.net or US: http://ast.checkmarx.net ) with those credentials.
When logging in for the first time, the user will be required to change the initial given password.
The new user can freely access Checkmarx One.
Authentication Method
Checkmarx One uses Time-based One Time Passwords (TOTP) protocol during the log in process to increase security.
Authenticator apps that support TOTP protocol and can enroll using QR codes will work with Checkmarx One.
Authenticator apps that support hash-based one-time password (HOTP) protocol are not officially supported, although Keycloak (The Open Source Identity and Access Management solution used by Checkmarx One) supports HOTP as well.
It is highly recommended to use authenticator apps that support TOTP protocol and not HOTP.