ENTERPRISE

Preparing for a standard installation

  • Last updated: June 21, 2022

  • Read time: 2 Minutes

If you just want to perform a quick-start deployment of Burp Suite Enterprise Edition for a trial, you can install using the default options. However, if you want to perform a full production deployment then you need to make a few configuration decisions. This page explains the choices that you need to make and how they impact the installation process.

Note

Before planning your setup, take some time to familiarize yourself with the system's architecture and system requirements, as these may affect the decisions that you make.

Embedded or external database

Burp Suite Enterprise Edition includes an embedded H2 database. Using this database makes it easy for you to evaluate the product or run trials, but for production deployments you may want to connect to an external database.

You will need to set up any external database before installing Burp Suite Enterprise Edition. For more information on this process, see Setting up the external database.

Note

You can migrate from the embedded database to an external database later if required.

Port number

For standard deployments, you will need to choose a port that users and API clients can use to access the application.

The port number you choose must meet the following requirements:

  • The port must be available for use on the machine that you want to install the Enterprise and web servers on.
  • The operating system user must be allowed to bind to that port. On Linux and MacOS, low-privileged users are unable to bind to some well-known port numbers (such as 80 or 433). If you want to use a low port number, you should configure port redirection at the OS level.

TLS

Burp Suite Enterprise Edition supports Transport Layer Security (TLS) communication with the web server front end. In order to set TLS up you will need a TLS certificate file in PKCS#12 format and a password for the certificate file. You are prompted to enter these details once the application is installed.

Note

The certificate you specify must have the .p12 file extension. Certificates in .psx format are not supported.

Installation location

You will need to specify separate directories for the Burp Suite Enterprise Edition application itself, its logs, and its data during the install process.

System user

For Linux and MacOS installations, you should decide whether you want to use an existing operating system user to run the Burp Suite Enterprise Edition services, or create a new user during installation.

Scanning machine setup

If you intend to run large numbers of concurrent scans then you may want to set up dedicated scanning machines. However, you can also run scans from the same machine that the Enterprise server is installed on.

You should consider whether you want to run scans from the Enterprise server machine before you install, as you will be asked which Enterprise components you want to install on that machine during installation.

Next step - Configure your environment