Configure an On-Premise Code Scanner to Use Self-Signed Certificate

If you secure your repository server with a self-signed certificate not signed by a trusted certification authority, you can configure the on-premise code scanner to skip the TLS verification.

To configure an on-premise code scanner to use self-signed certificate:

Use Secure Shell (SSH) and access the on-premise code scanner VM.
Locate the docker-compose.yaml file.

Note: The docker-compose.yaml file is part of the tenable-code-scanner-docker.zip. For more information, see Deploy an On-Premises Code Scanner

In the siac-bot section, add an environment variable: SKIP_TLS_VERIFY: "true"
Save the docker-compose.yaml file.
In the CLI of Tenable.cs, run the following command:
sudo ./tenable-cs-code-scanner
Tenable.cs uses the self-signed certificate to scan your repository.

Copyright © 2023 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trademarks of Tenable,Inc. Tenable.sc, Tenable.ot, Lumin, Indegy, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective owners.