Unlock enhanced API scanning with Burp Suite Enterprise Edition  –  Learn more

Enterprise Edition

Next steps after setup

  • Last updated: March 27, 2024

  • Read time: 3 Minutes

Congratulations - your instance of Burp Suite Enterprise Edition is ready to use.

You can explore the dashboard and start running scans straight away. However, there are some key tasks that we recommend completing before you start running a full production scanning workflow. See the sections below for more details on how to get the most out of Burp Suite Enterprise Edition.

Import sites in bulk

Burp Suite Enterprise Edition's CSV-based bulk site upload feature makes it easier to add large numbers of sites to the system. This is useful if you're looking to migrate from an alternative tool that allows you to export your existing sites.

Related pages

Importing sites in bulk.

Schedule scans

Scheduling regular scans is the best way to see changes in your security posture and identify areas for improvement. Scans run at set intervals with the same configuration are easier to compare than one-off scans. They help you to see how changes to your sites affect the vulnerabilities you find.

You can set up unlimited sites and run unlimited scans in Burp Suite Enterprise Edition at no extra cost.

Related pages

Managing scheduled scans.

Set up your email server

You can connect Burp Suite Enterprise Edition to both internal and external email services. Setting up an email server gives you the following benefits:

  • Administrators can send email invites to new users.
  • Users can automatically receive end-of-scan reports.
  • Administrators can automatically send password reset links to users.
  • Administrators can receive system alerts, such as low disk space warnings.

Add more users

You can set up unlimited users in Burp Suite Enterprise Edition. User permissions are managed using a role-based system: you create roles defining what a user can do within the system and then add specific users to those roles.

Managing permissions in this way makes it easy for you to give users the access they need. For example, you could set up separate roles for your security, IT infrastructure, and management teams, each with their own combination of permissions.

Burp Suite Enterprise Edition also supports a number of single sign-on options. This includes LDAP or SAML-based authentication, as well as user provisioning via SCIM.

Set up integrations

You can integrate Burp Suite Enterprise Edition into your existing CI/CD pipelines. For more information, see Integrate with your CI/CD platform.

You can also connect to the following issue tracking and workflow tools:

Learn more about working with sites

Burp Suite Enterprise Edition enables you to specify a wide range of information around how each of your sites should be scanned, including:

  • Which of the site's URLs should be scanned and any that should be excluded.
  • The configuration that scans of the site should use.
  • What login mechanisms Burp Scanner should use to access any authenticated areas of your site.
  • Whether Burp Suite Enterprise Edition should send any automated notifications when scanning the site.

Related pages

Working with sites.

Learn more about working with scans

Burp Suite Enterprise Edition offers a wide range of scan management features, including:

  • Creating scans both individually and in bulk.
  • Monitoring the progress of in-flight scans.
  • Defining how scans categorize and manage false positives.
  • Downloading logs.

Related pages

Working with scans.

Learn more about analyzing scan results

Burp Suite Enterprise Edition makes it easy for you to track your scanning progress over time. You can also view details of individual issues, and raise tickets in third-party issue tracking systems if you have set up the relevant integrations.

Related pages

Working with scan results.

Was this article helpful?