Deploy IAST Agent

Install the IAST Agent on your application server, and configure the scan.

About this task

You need to deploy the IAST agent on the application server, so it can monitor communictaion with the application, and report to ASoC.

Support: Only web application servers running JRE/JDK 1.8 or higher are supported.

Follow the instructions for your server:
- Tomcat server: Copy the Secagent.war file, that you downloaded from the ASoC scan configuration wizard, to your webapps folder, or deploy it as you would any other WAR servlet.
- WebSphere server: Deploy the Secagent.war file, that you downloaded from the ASoC scan configuration wizard, as you would any other WAR servlet.
  Note: Make sure to:
  1. Deploy the agent as a web application, not an enterprise application
  2. Select /Secagent as the context root
- WebSphere Liberty / Open Liberty server: Copy the Secagent.war file, that you downloaded from the ASoC scan configuration wizard, to your dropins folder, or deploy it as you would any other WAR servlet.
- Jboss/WildFly server: Copy the Secagent.war file, that you downloaded from the ASoC scan configuration wizard, to your deployments folder, or deploy it as you would any other WAR servlet.
- Weblogic: Deploy the Secagent.war file, that you downloaded from the ASoC scan configuration wizard, as you would any other WAR servlet.
To verify the deployment, open any browser and browse to:
```
http://<server address>/Secagent
```
The Secagent page opens, showing that the agent has been loaded successfully.

Two sample Python scripts and a Python library, to facilitate automation when working with IAST, can be found here: https://github.com/hclproducts/asoc_automation_iast