Step 2: Installing and configuring the web app server and AV service
The Invicti Enterprise Application Server is installed using a wizard. The wizard has two parts:
- The Invicti Enterprise Web Application
- The Authentication Verifier Service
The following instructions explain how to install the Web Application and Verifier Service at the same time.
NOTE: The Authentication Verifier Service is an optional part of this installation process. You can install the Authentication Verifier Service whenever you want. For more information about installing the verifier service, refer to Authentication Verifier Settings. |
How to install the Invicti Enterprise Application Server and Authentication Verifier Service
- Run the WebAppSetup.exe file.
- On the End-User License Agreement step, accept the license agreement, and select Next.
- On the Ready to Install step, select Install to install the Web Application Server, and wait for a while.
- The installation asks you to install The Authentication Verifier Service.
- On the Welcome to the Invicti Enterprise Authentication Verifier Service Setup Wizard window, select Next to continue.
- On the Select Installation Folder step, select Next to install the Authentication Verifier Service to the default folder. Alternatively, select Browse… to select a different installation folder, then click Next.
- On the Ready to Install step, select Install.
- On the Completing the Invicti Enterprise Authentication Verifier Service Setup Wizard step, select Finish to complete the installation.
- On the Completing the Invicti Enterprise Web Application Setup Wizard step, select Finish to complete the Web Application Setup process. Selecting the Launch Invicti Enterprise Application launches the wizard for the steps below.
Next steps:
- Configure the Invicti Enterprise Web App
- Install the Invicti Enterprise Scanner Agent
- Install the Invicti Enterprise Authentication Verifier
- Install the Invicti Enterprise IAST Bridge
How to configure the Web Application Server using the installation wizard
To configure the web application server, you need to run the Invicti Enterprise Installation Wizard from the server URL on which the Invicti Enterprise application is installed. This opens automatically in your default browser on localhost.
TIP: You can also install the Invicti Enterprise Web Application in silent mode. For more information, refer to Installing Invicti Enterprise On-Premises in Silent Mode. |
- The first step is to configure the database connection.
- Enter the following information and then click Next.
- Data Source: the name or network address instance of SQL Server to connect. Specify an instance name like ‘server/instance’ if there is an instance name. You specify this when setting up the SQL database.
- Database Name: the name of the database associated with the connection.
- User Name: database user name.
- Password: database password.
- On the Encryption page, Download the Secret Key. Then, select Next.
- On the License page, click Import a License and select your license (.nsc) file, then click Next.
- On the Account page, complete the fields to set up your administrator account, and agree to the Subscription Services Agreement and Privacy Policy, then select Next.
- On the General page, the fields are pre-filled with default values. You can modify them as needed. After making any changes, select Next.
- On the Cloud page, if you use cloud providers like Amazon AWS, you can configure the settings in this step or leave it for now and configure it later (refer to Cloud Provider Settings). If you don't use a cloud provider, deselect the Cloud Integration checkbox and select Next.
- This step focuses on the Scanner Agents. At this point, you have two options:
- Install agents: To install an agent at this step, copy the Access Token using the copy button, navigate to the Installing and configuring the agent document, and follow the steps listed there. For more information about agents, refer to Agents in Invicti Enterprise On-Premises.
- Skip agent installation: If you do not want to install an agent at this point, select the Continue without installing an agent checkbox and select Next. Move to step 9 of this guide to continue with the instructions.
- After you have executed the AgentSetup.exe file and followed the wizard, you have successfully installed an agent. This agent now appears on the Scanner Agent Settings page. Select Next to continue to the next step.
- On the Authentication Verifier Settings page, you can choose to install the authentication verifier service and agent, or skip this step and set it up later in Invicti Enterprise. Refer to Installing and configuring the Authentication Verifier Agent.
TIP: This component is not needed if the websites you are scanning do not use form authentication. For more information, refer to Authentication Verifier Settings. |
Your options:
- Install Authentication Verifier Service and Agent:
- Connect to the Authentication Verifier Service: Select the Install Authentication Verifier checkbox. Follow the steps listed in the Authentication Verifier Service section.
- Install Authentication Verifier Agent: Follow the instructions in the Authentication Verifier Agent section. Refer to Installing and configuring the Authentication Verifier Agent for more information. When you have installed the Authentication Verifier Agent, select Next.
- Skip this step: Select Next to continue with the next section of the wizard and move to step 10 of this document.
- On the Email and SMS pages, select the Enable Email/SMS Notifications checkboxes to configure the settings. These let you inform users instantly about the status of a web application security scan, or when specific vulnerabilities are identified on the web applications you are scanning. For more information, refer to Managing Notifications.
You can skip these two steps by deselecting the Enable Email Notifications and Enable SMS Notifications checkboxes.
NOTE: To send new user invitations or other email notifications, you need to configure SMTP settings, and a Twilio account is required to receive SMS notifications. |
- Select Finish to complete the installation wizard.
The Invicti Enterprise user interface now opens on the Global Dashboard page with a Data Sharing Permission prompt. Either select the checkbox to agree to share anonymous user data, or close the prompt to disagree.
You may need to configure a proxy for the Invicti Enterprise web application.
How to change the installation folder for the Invicti Enterprise Web Application
The installer does not provide an option to select the folder location, however, you can change the location once the installation is complete. To do this, follow these steps:
- Copy the installation folder (C:\Program Files (x86)\Invicti Enterprise Web Application) to the target disk.
- Open IIS.
- From Sites, select NetsparkerCloud.
- Select Advanced Settings.
- Replace the physical path with the new path.