Using CAC to authenticate for scan
I am trying to configure my burp suite professional tool to be able to scan URL’s that require cac authentication to the website. I have the PKCS11 set up and am able to insert my cac credentials and pin code in user options. But when I attempt to crawl and audit the URL I get the error “failed to connect” am I missing a step?
When I attempt to get to the URL directly from the web browser using local host as proxy, I receive a burp certificate issue.
Would you be able to provide further details of your Burp certificate issue? Are you seeing any error messages in your Burp dashboard?
Have you installed the Burp certificate into your proxied browser? https://support.portswigger.net/customer/portal/articles/1783055-configuring-your-browser-to-work-with-burp