In order to evaluate an application, you need to have created at least one organization and one application, as well as created or imported at least one policy at either the organization or application level. You will also need to make sure you have the proper permissions to view report information for the application you wish to evaluate.

While evaluations can be initiated from various tools featuring CLM integration (e.g. Sonatype CLM for CI, IDE, and Nexus Pro), the quickest way to get started is to perform an evaluation via the CLM server.

This will generate a report for your application quite easily, and is a great way to create a quick baseline of your application’s health.