Supported version: Server 9.5.0
API Rate Limit: None
Supported Authentication: Custom authentication
IMPORTANT: Please make sure your Checkmarx SAST instance must be accessible from the Klera Machine.
To configure Checkmarx SAST using Custom authentication, follow the steps below:-
1. Enter your Checkmarx SAST URL, for example:- https://localhost/cxrestapi
2. Select “Create New Account” and add a user-friendly name for account for e.g. “Checkmarx SAST Account”.
3. Select "Method Type" as "POST".
4. Enter "Validation End Point" as https://<Your Server IP>/cxrestapi/auth/identity/connect/token
5. In "End Point Header Parameters" Enter:
"Key": username
"Value": <Your Username>
Click on '+' button to add more fields for header parameter for the below parameters.
"Key": password
"Value": <Your Password>
"Key": grant_type
"Value": password
"Key": scope
"Value": sast_rest_api
"Key": client_id
"Value": resource_owner_client
"Key": client_secret
"Value": 014DF517-39D1-4453-B7B3-9930C563627C
6. In "Select Credentials From" select "Response Key".
7. In "Parameter Key Name In Response" enter value as "access_token".
8. In "Operation's Request Header Parameter" select "Authorization with Bearer Prefix".
9. In "Expiration Time" select "Read Expiration Time From Response".
10. In "Response Parameter key name containing expiration time" enter value as "expires_in".
11. In "Expiration time parameter value's unit or format" select "Seconds".
12. Click on "Save".