Get involved in the Burp challenge for opportunities to test your skills and win swag  –   Challenge me

ENTERPRISE

Prerequisites for a standard installation

  • Last updated: November 30, 2022

  • Read time: 3 Minutes

You will need to provide some technical details when installing Burp Suite Enterprise Edition. To make the installation process as smooth as possible, we recommend you have these details to hand before you begin installing.

Note

Burp Suite Enterprise Edition offers multiple licensing, deployment, and installation options. We strongly recommend that your organization takes some time to decide on the best deployment type and system architecture to use, and that you review the system requirements, before attempting to install.

If you have not yet done so, see Preparing to deploy Burp Suite Enterprise Edition.

Port

For standard deployments, you will need to specify a port that users and API clients can use to access the application.

By default, Burp Suite Enterprise Edition uses port 8080. During the installation process, you can change this to any port that meets the following requirements:

  • The port must be available for use on the machine that you want to install the Enterprise and web servers on.
  • The operating system user must be allowed to bind to the port. On Linux and MacOS, low-privileged users are unable to bind to some well-known port numbers (such as 80 or 433). If you want to use a low port number, you should configure port redirection at the OS level.

TLS certificate

Burp Suite Enterprise Edition supports Transport Layer Security (TLS) communication with the web server front end. Configuring TLS is optional but recommended for production use.

You can choose whether to enable TLS as part of the initial configuration once you have installed the application. You will need to provide a TLS certificate that meets the following requirements:

  • The certificate must be in PKCS#12 format with a .p12 file extension. The .psx format is not supported.
  • The certificate must have a password.
  • The certificate must include a Subject Alternative Name (SAN).

Installation location

You will need to specify separate directories for the Burp Suite Enterprise Edition application itself, its logs, and its data during the install process.

System user

For Linux and MacOS installations, you will need to decide whether you want to use an existing operating system user to run the Burp Suite Enterprise Edition services, or create a new user during installation.

By default Burp Suite Enterprise Edition creates a new user called burpsuite to run processes under.

Scanning machine requirements

In order to run more than two concurrent scans, you will need to deploy separate dedicated scanning machines in addition to the Burp Suite Enterprise Edition server machine.

The number of scanning machines you need to deploy is determined by the number of concurrent scans your organization intends to run. We strongly recommend running no more than two concurrent scans on the server machine, and no more than 3-4 concurrent scans on each additional scanning machine.

Database setup script

Burp Suite Enterprise Edition includes an embedded H2 database, making it easy for you to evaluate the product or run trials. However, for production deployments we recommend that you connect to an external database.

You must use the database script provided to set up any external database you want to use up before installing Burp Suite Enterprise Edition.

Next step - Configure your environment

Was this article helpful?