> ## Documentation Index
> Fetch the complete documentation index at: https://docs.leen.dev/llms.txt
> Use this file to discover all available pages before exploring further.

# Checkmarx

> Instructions on how to configure API access for Checkmarx to fetch SAST, SCA, IaC, Container, and API Security Findings.

## Supported Data Models

* [Vulnerability Findings](/integrations/vulnerability-findings-v2)
  * type: `code`
  * type: `dependency`
  * type: `container`
  * type: `infrastructure`

* Resources
  * type: `branch`

## Onboarding Checkmarx

Follow the steps below to onboard your environment to our Checkmarx integration.

<Steps>
  <Step title="Access Identity and Access Management for your Checkmarx One Environment">
    Once logged in to your Checkmarx One environment, navigate to **Identity and Access Management** unde the Settings menu.
  </Step>

  <Step title="Create an OAuth Client">
    1. Navigate to **OAuth Clients** and click **Create OAuth Client**.

           <img src="https://mintcdn.com/leen/vQ2Rhs44KY1LGMJC/images/checkmarx/checkmarx-create-oauth-client.png?fit=max&auto=format&n=vQ2Rhs44KY1LGMJC&q=85&s=367710286636d95ec2686c3797a65690" alt="Create OAuth Client" width="3418" height="1898" data-path="images/checkmarx/checkmarx-create-oauth-client.png" />

    2. Provide a name and description.

    3. Assign the appropriate roles/permissions. For example, at least the following scopes are required:

       * `View-applications`
       * `View-projects`
       * `View-scans`
       * `View-results`

           <img src="https://mintcdn.com/leen/vQ2Rhs44KY1LGMJC/images/checkmarx/checkmarx-oauth-client-assign-roles.png?fit=max&auto=format&n=vQ2Rhs44KY1LGMJC&q=85&s=3082106f29d8fdbd6092455ad12ad855" alt="Assign Roles" width="2892" height="1752" data-path="images/checkmarx/checkmarx-oauth-client-assign-roles.png" />

    Alternatively, you could assign a default composite role as mentioned below:

    * `ast-viewer`

          <img src="https://mintcdn.com/leen/vQ2Rhs44KY1LGMJC/images/checkmarx/checkmarx-oauth-client-composite-role.png?fit=max&auto=format&n=vQ2Rhs44KY1LGMJC&q=85&s=d233b92d5df2808b3b7c4e0d01f097ff" alt="Assign Roles" width="2576" height="1774" data-path="images/checkmarx/checkmarx-oauth-client-composite-role.png" />

    4. Click **Save** and securely store the **Client ID** and **Client Secret**.
  </Step>

  <Step title="Enter Configuration Parameters in Leen">
    In your Leen integration configuration, provide the following:

    * **API Base URL:** Provide the API BASE URL corresponding to your region. Refer the table below:

      | Region              | API Base URL                       |
      | ------------------- | ---------------------------------- |
      | **US**              | `https://ast.checkmarx.net`        |
      | **US2**             | `https://us.ast.checkmarx.net`     |
      | **EU**              | `https://eu.ast.checkmarx.net`     |
      | **EU2**             | `https://eu-2.ast.checkmarx.net`   |
      | **Germany (DEU)**   | `https://deu.ast.checkmarx.net`    |
      | **Australia & NZ**  | `https://anz.ast.checkmarx.net`    |
      | **India**           | `https://ind.ast.checkmarx.net`    |
      | **Singapore**       | `https://sng.ast.checkmarx.net`    |
      | **UAE (MEA)**       | `https://mea.ast.checkmarx.net`    |
      | **Israel (Gov-IL)** | `https://gov-il.ast.checkmarx.net` |

    * **Tenant Name:** Your Checkmarx One tenant name.

    * **Client ID:** From the last step.

    * **Client Secret:** From the last step.
  </Step>
</Steps>