Support
Configuring Settings

General Settings

This document is for:
Invicti Enterprise On-Demand, Invicti Enterprise On-Premises

On the General Settings page, you can enable and disable different settings and functions for the system. There are additional settings in the Invicti Enterprise On-Premises edition.

For further information, see Overview of Settings in Invicti Enterprise, Invicti Editions, and Comparison Between Invicti Enterprise and Invicti On-Premises Edition.

General Settings Fields

This table lists and explains the fields on the General Settings page.

FieldDescription
Application URLThis is the URL that will be used to generate all system URLs.
This is available in the Invicti Enterprise On-Premises edition only.
Update Server URLThis is the URL that will be used to connect for updates. It has a static value that cannot be changed.
This is available in the Invicti Enterprise On-Premises edition only.
Enable Discovery ServiceEnable this option for a scan to include application and service discovery. It is enabled by default.
This is available in the Invicti Enterprise On-Premises edition only.
Discovery Service URLThis is the directory path where discovery service data is stored. If you change this path, you should move the existing files from the old location to the new one.
This is available in the Invicti Enterprise On-Premises edition only.
Scan Data PathThis is the directory path where scan data is stored. If you change this path, you should move the existing files from the old location to the new one.
This is available in the Invicti Enterprise On-Premises edition only.
Screenshots PathThis is the directory path where screenshots are stored. If you change this path, you should move the existing files from the old location to the new one.
This is available in the Invicti Enterprise On-Premises edition only.
Agent Data PathThis is the directory path where agent installation files and agent request logs are stored. If you change this path, you should move the existing files from the old location to the new one.
This is available in the Invicti Enterprise On-Premises edition only.
Max Upload File Size in MBThis is the maximum uploaded file size in megabytes. This setting sets the maximum uploaded file size for Client Certificate, Import Links, Import Websites, Custom Fields in Integrations, Scan Policy, and importing License File.
This is available in the Invicti Enterprise On-Premises edition only.
Sales Contact EmailThis is the email address of your Sales Contact at Invicti.
This is available in the Invicti Enterprise On-Premises edition only.
Support Contact EmailThis is the email address of your Support Contact at Invicti.
This is available in the Invicti Enterprise On-Premises edition only.
Agent Not Available Timeout (Minutes)This lets you set a timeout in minutes to mark agents as Not Available when they remain non-responding longer than the specified time.

This is available in the Invicti Enterprise On-Premises edition only.
Agent Selection EnabledEnable this option to allow users to select an Agent (a service application that executes scans) when launching a scan. It is enabled by default.
This is available in the Invicti Enterprise On-Premises edition only.
Enable Segment TrackingEnable this option to let Invicti track your usage. If enabled, you need to enter the key into the Segment Key field. 

This is optional and is subject to the legal agreement between your organization and Invicti.

This is available in the Invicti Enterprise On-Premises edition only.
Enable Hawk URLEnable this option to configure the Hawk URL. If enabled, you can change Hawk URL and validate the Hawk and DNS Settings. If changed, you can select the Update all scan policies option to apply the change to all scan policies.

This is available in the Invicti Enterprise On-Premises edition only.
Support can see my accountThis enables Invicti support to see your account.
This is available in the Invicti Enterprise On-Demand edition only.
Support can edit my accountThis enables Invicti support to edit your account.
This is available in the Invicti Enterprise On-Demand edition only.
Disable Issue notifications that are sent by the systemEnable this option to disable Issue notifications that are sent by Invicti.
Do not mark Information issues as accepted riskEnable this option to prevent Information Issues from being automatically marked as Accepted Risk.
Disable assigning issues to the committerEnable this option to disable the assigning of Issues to the committer during scans triggered by any Continuous Integration System. Disabling this setting means that Issues are assigned to the Technical Contact.
IP Restricted SessionsEnable this option to add extra security protection by making user sessions IP restricted. Once enabled, the same cookies can not be used to access the session from different IP addresses.
Configure retention period for raw scan filesEnable this option to configure the raw scan file retention period time in days. 

Raw scan files are the files stored as ZIP file that was created by the agent. 

These files are needed for incremental and retest scans. When the retention period is over, the raw scan file is removed. However, the scan data, such as issues, remains available.
Configure retention period for scan dataEnable this option to configure the scan data retention period time in days. 

The scan data refer to the scans in the database. When the retention period is over, the scan data, such as issues, site map, notifications, tags, and base scan, is removed. This is similar to deleting a scan from the Recent Scans page. 
Send notifications about long-running scansEnable this option to receive notifications from the system about long-running scans. It is enabled by default.

This is available in the Invicti Enterprise On-Premises edition only.
Allow scanning without a duration limitEnable this option to prevent the scan from being terminated when the maximum scan duration limit is reached.
Do not stop scan when maximum logout is exceededEnable this option to stop a scan when the maximum logout number is exceeded. It is not recommended to enable this option, as possible authentication issues will be ignored.

This is available in the Invicti Enterprise On-Premises edition only.
Do not expose sensitive information in the API responsesEnable this option to prevent sensitive information from being exposed in the API responses. If not selected, the sensitive information is presented as decrypted.
Customize Header TextThis allows you to enter the text that will appear right next to the logo on the header. All users see this text on all pages.
Login Banner WarningThis allows you to configure a login banner warning that appears when logged in to Invicti Enterprise. For further information, see Configuring Login Warning Banner.
Scan ControlThis allows you to suspend all scans, pause all active scans, and resume all paused scans. For further information, see Managing scans.
Default PoliciesThis allows you to set a default scan and report policy from your shared policies. These policies are set as the default policies for all team members. For further information, see Configuring Scan Policies and Custom Report Policies.
IAST BridgeThis allows you to set a default Bridge URL for Invicti Shark. The bridge is mandatory for .NET, Java, and Node.js servers. For further information, see Deploying Invicti Shark.

How to update general settings

  1. From the main menu, select Settings > General
  2. Select the relevant options.
  3. Select Save.

Invicti Help Center

Our Support team is ready to provide you with technical help.

Go to Help Center This will redirect you to the ticketing system.