Last updated: July 20, 2021
Read time: 2 Minutes
In the upper-right corner of the screen, select the settings icon and go to "Network" to open the network settings. If this is the first time you logged in as an administrator, you need to set the web server URL.
From this page, you can make changes to the following settings. Note that if you make changes to some of these settings, you will need to wait for the web server to restart, change the URL in your browser, and log in again.
This is the URL through which users will access the web server and log in to Burp Suite Enterprise Edition. This URL is also used to generate links in emails sent from the server, such as password reset emails.
The first time you log in as an administrator, you should change this to
http://your-web-server-IP:8080 or the fully qualified domain name of the machine on which you installed the web server. The port number is the one that you specified during the installation process (default: 8080). You can change these settings later if necessary.
By default, the web server uses unencrypted HTTP for communication. If you plan to enable TLS, you need to change the web server URL so that it uses HTTPS.
If you want to enable TLS, select the "Use TLS" switch. You will then be asked to upload a
PKCS#12 certificate. This must have the
.p12 file extension; certificates in
.psx format are not supported . You also need to provide the password for the certificate file.
If you enable TLS after already setting the web server URL, note that you need to also change the web server URL to use HTTPS. That is, you need to update the URL to
The Enterprise server needs to access
portswigger.net on port 443 activate your license and perform automatic software updates. For the best experience, we recommend allowing this access throughout your ongoing usage of the software, not only during initial installation. If your organization does not allow you to connect to the public internet directly, you can configure a network proxy that the Enterprise server can use to reach external domains, such as