Allowed hosts
Your target may start at one domain but span multiple domains. You can use this option to allow the crawler and scanner to follow links in your web applications across multiple domains, as long as each of those multiple domains are:
- Already configured as targets
- Listed in the allowed hosts list
This document describes how to specify allowed hosts for your selected target.
Steps to set up your allowed hosts
- Select Inventory > Targets from the left-side menu.
- Locate the target for which you would like to configure allowed hosts, and use the three dots (⋮) menu to enter Edit mode.
- Find the Allowed host field and, using the dropdown menu, select the URLs that should be scanned when scanning this target.
Parent application vs Allowed hosts The Parent application is used to group findings from a specific target, allowing scan results to appear under multiple application groups. Allowed hosts, on the other hand, are additional domains or IPs permitted to be scanned alongside the main target — they are separate from the parent application and define what the scan can include. |