Skip to content
English
NopSec.com
  • There are no suggestions because the search field is empty.

How do I Integrate Veracode SAST and DAST?

This guide will walk you through the steps to integrate Veracode SAST and DAST findings into the Nopsec Platform

 

Create a Veracode API User with Results API and Reporting API Permissions

Step 1: Log in to the Veracode Platform

Open your web browser and navigate to the Veracode Platform URL. Log in using an account that has administrative privileges to manage users and API credentials.

Step 2: Navigate to the Admin Section

Once logged in, look for the "Admin" tab or section in the top navigation bar. Click on it to access the administration settings.

Step 3: Go to the Users Page

From the "Admin" dropdown, select "Users" to go to the user management page.

Step 4: Create a New User

On the Users page, click the "Create User" button.

Step 5: Enter User Details

Fill in the required information for your new API user.

  • First Name: Enter a descriptive first name, e.g., "API".
  • Last Name: Enter a descriptive last name, e.g., "User".
  • Email Address: Provide a valid email address. While an API user won't typically log in via email, this is a required field. You might use an internal service account email.
  • Username: Choose a clear username for the API user, e.g., api.results.reporting.
  • Password: Set a strong password. You will only use this if you opt for username/password authentication, which is generally not recommended for API users. API keys are preferred.

Click "Save" to create the user.

Step 6: Assign API Roles

After creating the user, you will be taken to their User Details page. Scroll down to the "API Roles" section.

Step 9: Enable The Prisma Cloud Integration in Nopsec

  1. Navigate to Integrations in the NopSec UI and select the option to add the Checkmarx

  2. Enter Integration Access Info: When prompted enter the following information and click the "Save and Connect" button:

    1. Connection Name: Unique name for this integration
    2. Platform URL: The URL used to connect to the Veracode Platform
    3. API Key ID:  The Key ID created in the previous steps.
    4. API Secret Key: The secret key generated when creating the API Key ID in previous steps.
    5. SAVE and CLOSE