Preparing for a standard installation
Last updated: June 21, 2022
Read time: 2 Minutes
If you just want to perform a quick-start deployment of Burp Suite Enterprise Edition for a trial, you can install using the default options. However, if you want to perform a full production deployment then you need to make a few configuration decisions. This page explains the choices that you need to make and how they impact the installation process.
Embedded or external database
Burp Suite Enterprise Edition includes an embedded H2 database. Using this database makes it easy for you to evaluate the product or run trials, but for production deployments you may want to connect to an external database.
You can migrate from the embedded database to an external database later if required.
For standard deployments, you will need to choose a port that users and API clients can use to access the application.
The port number you choose must meet the following requirements:
- The port must be available for use on the machine that you want to install the Enterprise and web servers on.
- The operating system user must be allowed to bind to that port. On Linux and MacOS, low-privileged users are unable to bind to some well-known port numbers (such as 80 or 433). If you want to use a low port number, you should configure port redirection at the OS level.
Burp Suite Enterprise Edition supports Transport Layer Security (TLS) communication with the web server front end. In order to set TLS up you will need a TLS certificate file in PKCS#12 format and a password for the certificate file. You are prompted to enter these details once the application is installed.
The certificate you specify must have the .p12 file extension. Certificates in .psx format are not supported.
You will need to specify separate directories for the Burp Suite Enterprise Edition application itself, its logs, and its data during the install process.
For Linux and MacOS installations, you should decide whether you want to use an existing operating system user to run the Burp Suite Enterprise Edition services, or create a new user during installation.
Scanning machine setup
If you intend to run large numbers of concurrent scans then you may want to set up dedicated scanning machines. However, you can also run scans from the same machine that the Enterprise server is installed on.
You should consider whether you want to run scans from the Enterprise server machine before you install, as you will be asked which Enterprise components you want to install on that machine during installation.
Next step - Configure your environment