Using Test Policies¶
Test policies are related with security tests. When creating a test iteration, each test policy will define and specify the FAST node behavior.
You can specify the test policy in the following ways:
Specify the test policy ID:
- in the API request if the test is created or copied via API methods
- in the
TEST_RUN_POLICY_IDenvironment variable if you manage testing in FAST node
Default test policy
FAST automatically creates and applies Default Policy. This policy tests an application for typical vulnerabilities by checking the most commonly used request points.
Please note that the settings of the default test policy cannot be changed.