Checkmarx SAST Connector

Supported version: Server 9.5.0

API Rate Limit: None

Supported Authentication: Custom authentication

IMPORTANT: Please make sure your Checkmarx SAST instance must be accessible from the Gathr Analytics Machine.

To configure Checkmarx SAST using Custom authentication, follow the steps below:-

  1. Enter your Checkmarx SAST URL, for example:- https://localhost/cxrestapi

  2. Select “Create New Account” and add a user-friendly name for account for e.g. “Checkmarx SAST Account”.

  3. Select “Method Type” as “POST”.

  4. Enter “Validation End Point” as https://Your_Server_IP/cxrestapi/auth/identity/connect/token

  1. In “End Point Header Parameters” Enter:

“Key”: username

“Value”: Your_Username

Click on ’+’ button to add more fields for header parameter for the below parameters.

“Key”: password

“Value”: Your_Password

“Key”: grant_type

“Value”: password

“Key”: scope

“Value”: sast_rest_api

“Key”: client_id

“Value”: resource_owner_client

“Key”: client_secret

“Value”: 014DF517-39D1-4453-B7B3-9930C563627C

  1. In “Select Credentials From” select “Response Key”.

  2. In “Parameter Key Name In Response” enter value as “access_token”.

  3. In “Operation’s Request Header Parameter” select “Authorization with Bearer Prefix”.

  4. In “Expiration Time” select “Read Expiration Time From Response”.

  5. In “Response Parameter key name containing expiration time” enter value as “expires_in”.

  6. In “Expiration time parameter value’s unit or format” select “Seconds”.

  7. Click on “Save”.

If you have any feedback on Gathr documentation, please email us!

← Checkmarx AST Connector
CircleCi →