Configure an On-Premise Code Scanner to Use Self-Signed Certificate
If you secure your repository server with a self-signed certificate not signed by a trusted certification authority, you can configure the on-premise code scanner to skip the TLS verification.
To configure an on-premise code scanner to use self-signed certificate:
Use Secure Shell (SSH) and access the on-premise code scanner VM.
Locate the docker-compose.yaml file.
Note: The docker-compose.yaml file is part of the tenable-code-scanner-docker.zip. For more information, see Deploy an On-Premises Code Scanner
- In the siac-bot section, add an environment variable: SKIP_TLS_VERIFY: "true"
- Save the docker-compose.yaml file.
- In the CLI of Tenable.cs, run the following command:sudo ./tenable-cs-code-scanner
Tenable.cs uses the self-signed certificate to scan your repository.