System Configuration

The hosting platforms tab provides an overview of all hosting platforms currently configured in the AppControl. Use this overview to manage the hosting platforms that AppControl should manage.

For each hosting platform added, AppControl will poll the platform every 5 minutes using the credentials provided. It will download the list of apps that the provided credentials have access to, and update the list of and current status of the environments for each app.

When adding Mendix Cloud platforms use the following information:

• Mendix Platform User: The user that AppControl should use to access apps in the Mendix platform. For information on how to create this user see AppControl User.

• Mendix Platform Password (optional): The password for the Mendix platform user that you provided. Note: If you do not provide a password, all build and deploy features will fail to work. Additionally, if your organization does use PAT for authentication to the Mendix Team Server you must provide a password.

• API Key: The API key for the Mendix Platform user you provided.

• Personal Access Token (PAT): The PAT for the Mendix Platform user you provided.

The repositories tab provides an overview of all app repositories currently configured in the AppControl. App repositories are detected automatically if you are using the Mendix Cloud. App repositories are used my AppControl to download and scan your Mendix app project files.

App repositories are automatically detected each configured Mendix Cloud hosting platform. The only thing you will need to configure yourself is the type of authentication to use:

• Username & Password: This is the default. The Mendix Platform user and password you configured in the hosting platform will be used to access the repository.

• Personal Access Token: Select this if your organization uses Bring Your Own IdP and enforces 2FA. PAT will be used by AppControl to access the repository.

The apps tab shows you an overview of all apps that have been detected by AppControl. From this overview you can turn ON and OFF various features. Note: These features need to be enabled first from the 'Feature Settings' tab before turning them ON or OFF has any effect:

• Release Management. Enable pipeline management and configuration management for this app.

• Policy Management. Enable policy checking for this app.

• Alert Management. Enable remote alert management for this app (will create remote webhooks for receiving hosting alerts).

• Log Management. Enable analysis of access and app logs (Insights).

• Enabled? Will turn ON or OFF all features for this app. When disbabled the app will no longer appear in AppControl, even if AppControl has access to the app.

• Deleted? If TRUE, this app was previosuly detected by AppControl but it no longer has access to it.

To be able to perform each feature, AppControl needs specific rights to your app hosting platform. (See information about adding a hosting platform on this page) Use the 'verify app' button to check to see if AppControl has sufficient rights to perform all features.

The environment tab shows you an overview of all the environments that have been detected by AppControl, and the current technical status of the environment (If it is running, and if the deployed model has been processed and checked by AppControl). From this overview you can turn ON and OFF various features at an environment level. Note: These features need to be enabled first from the 'Feature Settings' tab before turning them ON or OFF has any effect:

• Release Management. Enable pipeline management and configuration management for this app.

• Policy Management. Enable policy checking for this app.

• Alert Management. Enable remote alert management for this app (will create remote webhooks for receiving hosting alerts).

• Log Management. Enable analysis of access and app logs (Insights).

Note: If AppControl detects that it has insufficient rights to perform the actions needed for a given feature, it will automatically disable the feature for the environment that it doesn't have access to. This is the reason you may see that certain environments have features disabled.

This tab enables you to turn ON and OFF the various features in AppControl. Depending on the governance needs of your organization you may wish to turn certain features ON or OFF. Additionally, it is possible to customize ceratin features so that they meet your governance needs.

• Release Management. Use this to enable the use of pipelines and releases.

  • Group admins can manage pipelines. When enabled, users with the Group Administrator role that are assigned as the admin of an App Group can create group and app pipelines for apps in their group.

  • App admins can manage pipelines. When enabled, users with the App Administrator role can create app pipelines for apps where they are asigned the App Administrator role.

• Policy Management. Use this to enable the use of policy and automated policy checking. When turned on AppControl will automatically check each deployed revision for compliance with your policies. When turned off policies will not be checked.

• Alert Management. Use this to enable remote alerting (receiving alerts from your hosting platform). When you turn it on remote webhooks will be configured on your hosting platform to send alerts to AppControl. When you turn it off, the webhooks will be disabled.

• Log Management. Use this to enable the automated analysis of access logs and app logs. When you turn it on, a scheduled event will download logs for each app environment and analyze them daily. When you turn it off, log analysis will no longer be performed.