Home
Administration Guide
Administration, configuration, and management tasks needed for the optimal use of Seeker
System Administration
Seeker provides a set of tools that enable administrators to configure, customize, and fine-tune various features and capabilities of the system, as well as integrate external tools.
Configure HTTPS Certificates
If you want to use a secure protocol for Seeker communications, configure HTTPS certificates.
Enabling Server-Agent Mutual Authentication
Configure .NET and Node.js Agents for Mutual Authentication
Configure a .NET Core, .NET Framework, or Node.js Agent to enable mutual authentication with the Seeker server.

Administration Guide
Administration, configuration, and management tasks needed for the optimal use of Seeker
- System Administration
  Seeker provides a set of tools that enable administrators to configure, customize, and fine-tune various features and capabilities of the system, as well as integrate external tools.
  - Configure Server URL
    The URL of the Enterprise Server is set after installation, but you can change it at any time as required.
  - Customize Seeker Connection Settings
    By default, Seeker uses fixed port numbers for external communications. If needed, you can customize some of these port numbers.
  - Configure HTTPS Certificates
    If you want to use a secure protocol for Seeker communications, configure HTTPS certificates.
    - Create Custom Server Certificate
      Configure Seeker to use your own trusted certificate.
    - Enabling Server-Agent Mutual Authentication
      - Configure Server for Mutual Authentication
        Configure the Seeker server to enable mutual authentication with the Agents.
      - Configure Java Agent for Mutual Authentication
        Configure a Java Agent to enable mutual authentication with the Seeker server.
      - Configure .NET and Node.js Agents for Mutual Authentication
        Configure a .NET Core, .NET Framework, or Node.js Agent to enable mutual authentication with the Seeker server.
  - Configure Automatic Project Creation
    Enable the global feature of automatic creation of regular projects within composite projects. This can greatly simplify the onboarding of new applications that are composed of multiple microservices.
  - Set up License
    To use Seeker, you need to set up a valid license for the product.
  - Configure Project Templates
    Save time and effort by creating project templates that enable you to share configuration settings between multiple projects.
  - Configure Compliance Policies
    Configure compliance policies to apply to your Seeker projects.
  - Configure Custom Reports
    Customize the Seeker reports by configuring additional filters. These custom reports can be generated on demand from the Export menu, or included in periodic email digests.
  - Configure Custom Tags
    Seeker supports defining custom tags and applying them to vulnerabilities. This helps you filter and manage vulnerabilities more effectively.
  - Configuring Integration with External Tools
    Seeker brings additional functionality by seamless integration with external Black Duck and third-party tools.
  - Configure Notification Rules
    Configure Seeker to take automatic actions upon vulnerability detection: create a ticket in a bug tracking system or send notifications to the relevant recipients.
  - Configure Vulnerability Lifecycle Management
    Define how to manage vulnerabilities when they move through their lifecycle stages in Seeker.
  - Configure Automatic Hot Backup
    Configure a recurrent automatic hot backup of the Seeker detection and configuration data. This data can be restored from backup at any point.
  - Configure Server JVM Options
    Fine-tune the performance of Seeker server by configuring its Java Virtual Machine (JVM) options.
  - Create Linux Service to Start/Stop Seeker
    To start and stop Seeker on a Linux machine, create a custom systemd service.
  - Logging
  - Customize the Sign-In Page
    Customize your Seeker sign-in page to display your brand logo and custom sign-on messages.
  - Configure Proxies for External Systems
    If Seeker cannot connect directly to an external system, configure and use a proxy for connection.
- User Administration
  Introduces the Seeker role-based access control (RBAC) concept, and outlines the user administration tasks.
- Project Administration
  Management and configuration tasks that Seeker administrators can perform for projects.
- Maintenance
  To ensure your Seeker system's health, perform periodic maintenance tasks.
- Using APIs
  Seeker provides a set of Web (REST) APIs that expose its basic functionality. You can use these APIs to automate various administration tasks, such as managing projects, exporting vulnerabilities or creating a diagnostic dump.
- Appendix A. Seeker Environment Variables
  Seeker uses a number of operating system (OS) environment variables and Java Virtual Machine (JVM) properties that administrators can configure to customize and fine-tune the behavior of Seeker server and Agents.

Configure .NET and Node.js Agents for Mutual Authentication

Configure a .NET Core, .NET Framework, or Node.js Agent to enable mutual authentication with the Seeker server.

Sign your Agent certificate with your organization's root CA. For example:

openssl x509 -req -days 365 -in seekeragent.csr -CA ca.crt -CAkey ca.key -set_serial 01 -out seekeragent.crt

Create a PKCS#12/PFX file for the Agent that contains the Agent certificate, and copy it to the Agent machine. For example:
```
openssl pkcs12 -export -out seekeragent.pfx -inkey user.key -in seekeragent.crt -certfile ca.crt
```
Define the following environment variables on the Agent machine:
- SEEKER_KEYSTORE_PATH={path to seekeragent.pfx}
- SEEKER_KEYSTORE_PASSWORD={keystore password}