HPE Security

Fortify Runtime

Fortify Runtime Diagnostic Tool Technical Note

Summary

The Fortify Runtime Diagnostic Tool is a command line tool that surveys and validates that an application host system meets minimum Fortify Runtime requirements and dependencies for fully functioning installation and usage. It is used as a pre-install checker and as a tool that gathers and checks important diagnostic information such as unsupported environments and manual configuration changes.

Usage

The Fortify Runtime Diagnostic Tool may be used to determine whether a specific environment supports the Fortify Runtime platform. The following environment parameters are currently being checked for compatibility:

Operating System

Java version

Application Server

IIS version (in Windows-based systems)

Please note that in case more than one Java instance is installed on the machine, the Fortify Runtime Diagnostic Tool may not be able to automatically locate the Java instance intended to run the application that is being monitored by the Fortify Runtime Platform. The command line option –j allows you to specify a specific path for the desired Java instance.

The Fortify Runtime Diagnostic Tool reports any unsupported environment parameter and may also report warnings for restrictions of some partially supported versions.

Launching the Fortify Runtime Diagnostic Tool

The Fortify Runtime Diagnostic Tool is part of the Fortify Runtime software bundle.

1.Open a command line.

2.From the Fortify Runtime installation directory bin folder launch the Fortify Runtime Diagnostic Tool as follows:

HPE Security Fortify Runtime (17.3)

Page 1 of 3

For Windows-based computers use diagnose.cmd

For Unix-based computers use the diagnose command

After you start the Runtime Diagnostic Tool, it displays information similar to the following:

Runtime diagnostic check starting Detected WindowsXP version 5.1 Detected IIS version 7.0 Detected Java HotSpot version 1.6

Checking prerequisites for HPE Security Fortify Runtime Analyzer (Java) [4.30]

HPE Security Fortify Runtime Analyzer (Java) [4.30] is supported on this system

Checking prerequisites for HPE Security Fortify Runtime Analyzer (.NET) [4.30]

HPE Security Fortify Runtime Analyzer (.NET) [4.30] is not supported on this system

3.To obtain a more detailed description of the above diagnostic summary, navigate to the log folder and open the diagnose.log file.

Command Options

The following table lists the available command options for the Fortify Runtime Diagnostic Tool.

Fortify Runtime Diagnostic Tool Command Options

 

Option

Description

 

 

 

 

 

 

-a, –appserverhome <arg>

Specify the application server home directory

 

 

-d, --debug

Display debug messages

 

 

-f, --fortifyhome <arg>

Specify the Fortify Runtime Platform home directory

 

 

-h, --help

Print this message

 

 

-j, --javahome <arg>

Specify the Java home directory

 

 

-l, --logfile <arg>

Specify the log filename

 

 

-r, --reqfile <arg>

Prerequisite file

 

 

-t, --trace

Display extra debug messages

 

 

-v, --version

Print the version information

 

HPE Security Fortify Runtime (17.3)

Page 2 of 3

Contacting HPE Security Fortify Support

If you have questions or comments about using this product, contact HPE Security Fortify Technical Support using one of the following options.

To Manage Your Support Cases, Acquire Licenses, and Manage Your Account

https://support.fortify.com

To Email Support

fortifytechsupport@hpe.com

To Call Support

1.844.260.7219

For More Information

For more information about HPE Security software products:

http://www.hpe.com/software/fortify

HPE Security Fortify Runtime (17.3)

Page 3 of 3