Home
Best Practices Guide
Recommended best practices for implementing Seeker in your organization
Application Onboarding Checklist
Tasks to perform to enable Seeker to test your application for security vulnerabilities.
Managing User Access
Establish the Seeker user base and enable user access to various features and operations.

Best Practices Guide
Recommended best practices for implementing Seeker in your organization
- Best Practices
  Rolling out a new security testing tool in any organization requires quite a bit of planning and preparation.
- Planning and Preparations
  Things to plan and prepare before starting an actual Seeker implementation.
- Server Deployment and Initial Setup
  Things to consider when planning your Seeker server deployment.
- Configuration and Integration Checklist
  Make the most of Seeker by fine-tuning its settings and integrating the external tools that complement its functionality.
- Securing Seeker Deployment
  Recommended measures that can help you secure your Seeker deployment.
- Application Onboarding Checklist
  Tasks to perform to enable Seeker to test your application for security vulnerabilities.
  - Creating Projects
    Create and configure projects to collect vulnerabilities and manage settings associated with your application.
  - Managing User Access
    Establish the Seeker user base and enable user access to various features and operations.
- Application Testing Guidelines
  Once you have onboarded your application, you need to generate activity and traffic in the application for Seeker to monitor. In most cases, this happens during regular manual or automated QA testing.
- Reviewing Test Results
  Review the results of security testing of your application and included third-party and open-source components, and handle the detected vulnerabilities.
- Vulnerability Handling Guidelines
  Recommendations and best practices for the handling of vulnerabilities detected in your applications.
- Maintenance
  To ensure your Seeker system's health, perform periodic maintenance tasks.
- Performance Optimization
  How to minimize the potential impact of Seeker operation on application performance.

Managing User Access

Establish the Seeker user base and enable user access to various features and operations.


Tasks	Information
1. Get familiar with the Seeker's role-based access control (RBAC) concept.	User Administration
2. Enable user authentication and simplify user management by connecting to your organizational LDAP/Active directory.	Configure LDAP/Active Directory
3. Define and configure global and project roles.	Manage Roles
4. Define groups and assign them to roles. If LDAP authentication is used, users get permissions according to the LDAP groups mapped to their Seeker groups.	Manage Groups
5. Define users and assign them to groups, only if you are not using LDAP user authentication. When an LDAP user, assigned to an authorized LDAP group, logs on to Seeker for the first time using his or her LDAP credentials, the corresponding Seeker user is automatically created. The user is assigned to the same roles as the corresponding Seeker groups as well as to the built-in everyone group. This grants the user the group’s roles and eliminates the need to manually define individual users and assign them to groups in Seeker.	Manage Users
6. Assign members (users and groups) to projects.	Manage Project Membership
7. Optionally, enable user single sign-on to Seeker by configuring Seeker with your 3-rd party identity provider (IdP).	Configure SAML 2.0-based SSO