Add login configuration for pages with authentication
Web pages with sensitive or confidential content require users to authenticate themselves for access. With Website Scanner, you can scan web pages with form or basic authentication. To do that, you have to add a login configuration.
Configuration for form authentication
In form authentication, your users enter their username and password in a web form. Form authentication integrates the authentication process directly into the website’s interface in the form of a user-friendly form.
To add a login configuration for form authentication, follow these steps:
In Website Scanner, click New website scan. The Set up a website scan window opens.
In the Test pages behind login section, click Add.
The Add a new configuration window opens.
Enter a configuration name, and ensure that Form authentication is selected as the authentication type.
Enter the login URL of the website you want to scan.
Enter the username and the password to log in to the website.
For security reasons, always use sample accounts for testing purposes.
Enter the selectors for the username and password fields, as well as for the Submit button:
- Username selector: The CSS selector for the username text field on the login page
- Password selector: The CSS selector for the password text field on the login page.
-
Submit button selector: The CSS selector for the button you click after entering the credentials on the login page
Click Save & Confirm.
Then, continue setting up your website scan.
Configuration for basic authentication
Basic authentication is a security method often implemented as a pop-up that prompts one to enter their login credentials. The pop-up typically appears immediately upon navigating to a page. It restricts content visibility until valid credentials are provided. The username and password are transmitted as Base64-encoded data within the Authorization header of each HTTP request.
To add a login configuration for basic authentication, follow these steps:
In Website Scanner, click New website scan. The Set up a website scane window opens.
In the Test pages behind login section, click Add.
The Add a new configuration window opens.
Enter a configuration name, and ensure that Basic authentication is selected as the authentication type.
Enter the username and the password to log in to the website.
For security reasons, always use sample accounts for testing purposes.
Click Save & Confirm.
Then, continue setting up your website scan.
Use an existing configuration
After you create a login configuration (for form or basic authentication), you can use it for your future scans.
To reuse a login configuration:
- In the Add login configuration section in the Setup a website scan window, click Add. The Add new configuration or select from saved configurations window opens.
- Under Your saved configurations, select the required authentication type. The relevant configurations are shown.
- Select the configuration that you want to reuse. The Confirm login configuration page opens.
- Review the configuration and click Confirm. Then, continue setting up your website scan.
Related topic
We're sorry to hear that. Please share your feedback so we can do better
Contact our Support team for immediate help while we work on improving our docs.
We're continuously improving our docs. We'd love to know what you liked
We're sorry to hear that. Please share your feedback so we can do better
Contact our Support team for immediate help while we work on improving our docs.
We're continuously improving our docs. We'd love to know what you liked
Thank you for your valuable feedback!