Import data from the Fortify scanner, to map Application Vulnerable Items (AVIs), thereby enriching the data in your instance.

Before you begin

Role required: App-Sec Manager

About this task

After the initial import, Fortify vulnerability integrations do a delta import each time they run, retrieving the latest data. See Perform a manual Fortify application vulnerability import for more information on full imports.

Procedure

  1. Navigate to All > Fortify Vulnerability Integration > Integrations.
  2. Choose an integration.
  3. On the form, fill in the fields.
    Field Description
    Name Name of the integration run.
    Active Option to activate an integration.
    Run Frequency of the integration run.
    Time
    Application Application containing this record.
    Source integration Source Integration for this integration.
    Source instance Source instance for this integration.
    Next integration Next-in-sequence integration, to run after the current integration run.
    Start time Start date and time of the last successful integration run. The time is calculated as Hours in local time. The default time for the initial run is 00:00:00.
    Integration Details
    Integration script Script include that extends the VulnerabilityIntegrationBase to be executed when the integration runs. This script defines how to retrieve data from a third-party system.
    Integration factory script Script that defines how to construct the script include selected for the Integration script.
    Report processor strategy Strategy you want to use to handle the data returned by the integration script when the integration runs.
  4. Select Execute Now to run the integration.