Onboarding an Application

🚀 Deployment of Controller

The AppSentinels Controller must be deployed as the first step in onboarding any application onto the platform. It plays a critical role by:

Receiving and analyzing live API traffic from Sensors and Plugins.
Anonymizing Personally Identifiable Information (PII) locally and forwarding structured metadata to the Cloud Platform.
Acting as the first line of defense against API attacks such as BOLA, BFLA, and data exposures.

After deployment, confirm successful registration by navigating to System Health → Controller Health in the dashboard.

📄 Refer: AppSentinels Controller Deployment Guide for detailed deployment using Docker/Kubernetes.

🔗 Integration with API Environment

After deploying the Controller, integrate it with your API infrastructure. Supported integration points:

API Gateways: Kong, Apigee, Azure APIM, etc.
Ingress Controllers: Kubernetes Ingress (NGINX, Istio).
Load Balancers: F5 BIG-IP, VMware AVI, etc.
Web Servers: NGINX, Tomcat, IIS, etc.

Integration Modes:

Out-of-Band (OOB) Mode: Passive monitoring with optional enforcement.
Inline/Service Chaining Mode: Real-time inspection and blocking.

📄 Refer: AppSentinels API Environment Integration Guide for detailed integration steps.

🔐 Upload License

AppSentinels Platform license for your organization must be uploaded to enable access to protected applications. To upload the license, navigate to Organization → Settings → License Usage and select Upload Licenses.

Once uploaded, license usage details will be visible under the License Usage page. The details include:

Subscribed on: 03/06/2024
License Expiry: 03/06/2025 (20 days remaining)
APIs Discovery Limits: 250
API Calls Limit: Up to 3,000,000 API Calls / Month
DAST Scan Limits: Up to 2 DAST Scans / Month
Number of Applications: 3
Data Retention Period: 30 Days
Users Limit: 5

If you require a new license or assistance, please contact the AppSentinels Support Team.

🛠️ Onboarding an Application

Once the Controller is deployed and integrated, onboard your application by adding:

Application Name
Application Domain
Assigned Users

Applications are automatically linked based on the domain configured in the Controller, enabling traffic discovery and security policy application.

📄 Refer: Onboarding Applications on AppSentinels Platform section for detailed steps.

✅ Post-Deployment Validation

Follow these steps to validate successful onboarding:

Generate API requests from the application (UI interactions or test scripts of application).
In AppSentinels dashboard, switch to Application View and select your app from Organization Dashboard.
Navigate to API Catalogue and ensure APIs are listed.

⚠️ Note: AppSentinels discovers APIs for requests with Content-Type JSON, XML, or GraphQL. Static content (e.g., images, CSS, JS) is ignored.

🧩 Defining API Attributes

AppSentinels uses key API attributes to enable accurate discovery and threat detection:

Authentication Attributes: Identify unauthenticated APIs.
Session Attributes: Track user sessions across APIs.
User Attributes: Correlate API requests to users.

Default attributes are provided, but if your application uses custom headers, tokens, or keys, update the configurations.

You can configure these under Settings → Session & User Attribution in the dashboard.

⚠️ Proper configuration of attributes is critical for precise API classification, user tracking, and detecting Broken Authorization issues.

⯇ About AppSentinels API Discovery and Sensitive Data ⯈