Recently Viewed Topics
Configure Login Form Authentication
These steps describe how to check the authentication values for the Login Form authentication method in the Credentials settings for the Web App Overview and Web App Scan templates.
These steps assume that you already have a login form ready to test your credentials.
For the web application you want to scan, access the login page.
Type your credentials as necessary.
Upon successful authentication, in the browser console, locate the call that performs the authentication. In this example, the call is
The Form Data section displays the key/value pairs. In this example, they are
upass: WAS, and
- In Tenable.io Web Application Scanning, either
create a new scan, or access the scan settings for which you want to add credentials.
- In the scan settings, click the Credentials tab.
- Click General.
- In the Authentication Method drop-down box, select Login Form.
- In the Login Page box, type the URL for your login form page.
In the Regex to verify successul auth box, type the regex to match when the credentials are correct.
Note: In many cases, this is text that appears on the login page (e.g.,
In the Credentials boxes, type the key/value pairs that you retrieved in step 3.
- Click the Save button.