Configuring General Settings

The General Settings tab in Acunetix On-Premises allows you to define your scan data retention and deletion policy, specify the IP address or hostname, and port of the AcuSensor Bridge, and adjust scan and system log retention settings. This guide provides information about each of these General Settings options.

To access the General Settings:

1. Log in to Acunetix On-Premises.
2. Select Settings from the left-side menu.

3. Select the General tab.

Scan Data Retention Settings

You can limit the amount of information retained in the main user interface, removing clutter and generally allowing you to manage your results easily. The default settings will retain the last three scans for each target (assuming the same scan profile was used), together with all the vulnerability information collected. Making a fourth scan will cause the oldest scan and its vulnerability information to be marked as Archived. To change the default number of scans retained, click in the text box and enter your preferred number, then click Save at the bottom of the page.

Archive behavior with different scan profiles

• If you have made three scans with the Cross-site Scripting profile and three scans with the SQL Injection profile for the same target, then all six scans will be retained and will not be archived (unless you make a fourth scan for one of those two profiles).
• If you make a scan with the Full Scan profile, it will trigger archiving also of scans made with any other profile — the Full Scan profile checks for all known vulnerabilities, and the scan and vulnerability information inside is, therefore, a superset of the results made with any other profile.

Automatically Deleting Scans from the Archive

By default, Acunetix will retain archived scan and vulnerability information for 400 days, after which the archived data will be deleted. You can adjust this to any duration you prefer. If you wish to disable the deletion of archived data, you achieve this behavior by setting the number of days to a very large value (such as 73000 days or 100 years).

AcuSensor Bridge

The AcuSensor Bridge is a crucial component for IAST in Acunetix. Its primary function is to facilitate the relay of out-of-band messages between the Acunetix scanning engine and the IAST sensors. To learn more about the AcuSensor Bridge, refer to the AcuSensor Bridge documentation.

Log Settings

Data Retention policy for logs: Main Installation

You can customize data retention for scan logs and system logs. The data retention fields specify the number of days for which Acunetix will retain logs before deleting them. If you specify 0 days, logs are not deleted; this implies that you will need to ensure that your Acunetix machine does not run out of disk space.

Data Retention policy for logs: Engine-Only Installation

To customize the data retention policy for logs in an engine-only installation, you will need to manually adjust the following configuration file:

• Windows: C:\ProgramData\Acunetix\settings.ini
• Linux: /home/acunetix/.acunetix/wvs.ini

Edit (or add if they are not present) the following lines:

Customize location for logs

To customize the location of the log files, you will need to manually adjust the following configuration file:

• Windows: C:\ProgramData\Acunetix\settings.ini
• Linux: /home/acunetix/.acunetix/wvs.ini

Edit (or add if they are not present) the following lines: (windows example):