Unlock enhanced API scanning with Burp Suite Enterprise Edition  –  Learn more

Enterprise Edition

Configuring Burp Suite Enterprise Edition (Standard)

  • Last updated: March 27, 2024

  • Read time: 3 Minutes

The first time you access Burp Suite Enterprise Edition after installation, the application prompts you to create an administrator user.

For standard instances with an external database, the application also prompts you to enter your database information and gives you the option to upload a TLS certificate for the web server.

Note

Your browser may give you an "invalid certificate" message when you first access Burp Suite Enterprise Edition. This is normal, and it is safe to continue. You can resolve this issue by uploading a valid TLS certificate, as described below.

Uploading a TLS certificate

Uploading a TLS certificate

If you're using an external database, Burp Suite Enterprise Edition displays the Upload a TLS certificate page when you first run the application.

This page enables you to replace the self-signed TLS certificate that was generated during installation with one that is valid for your organization. This step is optional, but recommended, as your users may be unable to access the application without the correct certificate in place.

The TLS certificate must have the following properties:

  • Use a PKCS#12 certificate with a .p12 file extension. The .psx format is not supported.
  • The certificate must have a password.
  • The certificate must include a Subject Alternative Name (SAN).

Note

We recommend you upload a certificate that is signed by a certificate authority that your browser trusts. If you upload a certificate that your browser does not recognize (such as another self-signed certificate), then the app will be unable to verify the certificate and you will need to refresh the page on the uploading screen in order to continue with the configuration process.

Alternatively, click Skip this step to open the Connect to your database page without uploading a certificate.

Configuring database details

Configuring database details

The Connect to your database page enables you to specify external database details. This page of the setup flow is not displayed if you are deploying a standard installation that uses the embedded database.

Note

Before you attempt to connect to your database, please make sure that you have configured it to work with Burp Suite Enterprise Edition. For details on how to do this, see Setting up the external database.

To configure database details:

  1. From the Connect to your database page, enter the JDBC URL of the database you want to connect to. Note that the required format for the URL changes depending on the type of database you want to use. For more information on JDBC URLs in Burp Suite Enterprise Edition, see Database connection URL format.
  2. Enter the Username and Password of the Enterprise Server database user. This is the user that the Enterprise Server will use when connecting to the database.

    • Additionally, if your database requires a different format for the username when connecting externally (for example, user-name@server-name), add a Connection username for the Enterprise Server database user.
  3. Enter the Username and Password of the scanning machine database user. This is the user that scanning machines will use when connecting to the database.

    • Additionally, if your database requires a different format for the username when connecting externally (for example, user-name@server-name), add a Connection username for the scanning machine database user.
  4. Click Next to save your database details and display the Create admin user page.

Configuring admin user details

Configuring admin user details

The final step in the configuration process is to set up your Burp Suite Enterprise Edition admin user. This step is necessary for all Burp Suite Enterprise Edition instances.

To do so, enter the Email address and Password for the admin user on the Create admin user page, then confirm your password and click Finish & login to complete the configuration process. The application displays the Sign in page.

Warning

Make sure you save your password somewhere secure. You will need it to log in to Burp Suite Enterprise Edition.

Once you have configured your admin username, you can sign in and begin using Burp Suite Enterprise Edition. When you log in to Burp Suite Enterprise Edition for the first time, you are prompted to activate your license.

Next step - Activate your license

Was this article helpful?