Scribd
Upload
12 views

Users, Teams, and Projects

Uploaded by

stylogroup93
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
12 views

Users, Teams, and Projects

Uploaded by

stylogroup93
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 4

Checkmarx Certified Engineer

Exercise: Users, Teams, and Projects


Table of Contents
Checkmarx Certified Engineer ...........................................................................................1
Exercise: Users, Teams, Projects ............................................................................................... 1
Module 06 Exercise: Users, Teams, Projects ............................................................................. 3
About ...............................................................................................................................................................3
Steps ................................................................................................................................................................3
Learning Outcomes .........................................................................................................................................4

2 | Checkmarx Certified Engineer www.checkmarx.com


Module 06 Exercise: Users, Teams, Projects
About
This exercise demonstrates the process of creating and managing users, and teams and how projects fit into
this model.

Steps
1. Creating Teams
a. Login to the Cx Portal using the credentials provided and the link on the desktop. (Note: first time
accessing the portal may take a few minutes to load)
b. Click on the Access Control icon at the top.
c. Navigate to the Teams tab.
d. On the left, you will notice the Hierarchy; expand all the nodes so that you can see a full view of the
existing team structure. If you click on a node on the organizational tree, you will see which users have
been assigned to that team.
e. With the CxServer node selected, above the tree, click the three dots at the top and select Add Team
option.
f. In the Hierarchy dialog, type CxCE for the name, and click Add Team. This will add a CxCE node to the
Hierarchy under CxServer.

g. Now select the newly created CxCE node on the tree and repeat the process to add another team.
h. In the Add Team dialog, type Alpha Super Awesome Cool Dynamite Wolf Squadron, or Alpha for
short. Click Add Team. This will add the team Alpha beneath the CxCE node on the tree.
2. Assigning a Project to a Team
a. Checkmarx projects are assigned to teams during project setup. The team associated with a project can
also be modified after the project is created. Navigate to Projects & Scans → Projects.
b. Select the CxCE Training project we created in earlier exercises. At the bottom of the page, click the
General Tab, and then click the Edit button (at the very bottom).

c. In the Team field, select the Alpha team we just created (CxServer\CxCE\Alpha). Then click the Update
button.
3. Creating users
a. Navigate to Access Control → Users.

3 | Checkmarx Certified Engineer www.checkmarx.com


b. Above the user list, click Add User. Provide all the required fields such as name, email, password, etc.
(make sure to remember the password).
c. Click on the Team tab and check the box next to the Alpha team we created.
d. Click on Roles; and select SAST Scanner, SAST Reviewer, and SAST Results Verifier. Click Save.

e.Repeat steps b-d. above again. But this time, select a team in a different company than CxCE, and for
the role, select SAST Reviewer only. Click Save.
4. Observe user permissions
a. Click the Logout button at the top right.
b. Now log in using the second account you created (the account that was not assigned to the CxCE\Alpha
Team).
c. Observe that all the Management functions are not available to this user. Now navigate to Projects &
Scans → Projects. Observe that there are no projects here to be seen. This is because no projects have
been assigned to this team. If this team had projects assigned to it, they would be visible here, and this
user would be able to review results. Also notice that this user cannot create new projects or initiate
new scans.
d. Click the Logout button at the top right.
e. Log in this time using the first account you created (the account that was assigned to the CxCE\Alpha
team). Navigate to Projects & Scans → Projects. You will see the CxCE Training project (which we
previously assigned to Team Alpha in step 2 above). Because this account was assigned the role of
scanner, and because of the options we selected when we create the account, the user will be able to
create and delete scans and projects. The Scanner role is also able to review results.
f. Note: If we moved a project from one team to another, we are granting any users that are part of that
team the ability to review the project. Similarly, if we move a user from one team to another, the user
will then be able to see all projects associated with that team.

Learning Outcomes
• You should now understand how to create teams in Checkmarx and assign users and projects to teams.
• You should be able to create new application users and assign them to teams.
• You should have a better understand of the difference between the Scanner and Reviewer roles.
• You should have a good understanding of the access control mechanisms, which are enforced by assigning
projects to teams and users to teams.

4 | Checkmarx Certified Engineer www.checkmarx.com

You might also like