Tanium Asset
  • 19 May 2022
  • 6 Minutes to read
  • Dark
    Light
  • PDF

Tanium Asset

  • Dark
    Light
  • PDF

The Tanium Asset adapter provides an inventory of hardware and software assets including servers, laptops, and desktops for thorough insight

Parameters

  1. Hostname or IP Address (required) - The Hostname or IP address of the Tanium server that Axonius can communicate with via the Required Ports. This adapter supports both on-premise and Tanium Cloud instances. When connecting to a Tanium Cloud instance, "-api" must be added to the end of the subdomain of your Tanium Cloud instance. For example: "domain.cloud.tanium.com" should be entered as "domain-api.cloud.tanium.com".
  2. User Name or API Token ID (required) - The credentials for a user account that has the Required Permissions to fetch assets. If an API token is being used for authentication, this must be the ID of the API token. The Token ID column in Tanium may be hidden.
  3. Password or API Token (required) - The credentials for a user account that has the Required Permissions to fetch assets. If an API token is being used for authentication, this must be the API token string.
More information on API Tokens
  • When connecting to a Tanium Cloud instance, an API token must be used.
  • When creating an API token in Tanium, the default value for "Expire in Days" is 7. It is recommended to set this value to the maximum allowed value of 365.
  • There is support in Axonius for auto-rotation of API Tokens - please contact support@axonius.com in order to enable this feature for your instance.
  • Please see the Tanium Documention on Managing API tokens for more information.
  1. Verify SSL (required, default: False) - Verify the SSL certificate offered by the value supplied in Hostname or IP Address. For more details, see SSL Trust & CA Settings.
    • If enabled, the SSL certificate offered by the value supplied in Hostname or IP Address will be verified against the CA database inside of Axonius. If the SSL certificate can not be validated against the CA database inside of Axonius, the connection will fail with an error.
    • If disabled, the SSL certificate offered by the value supplied in Hostname or IP Address will not be verified against the CA database inside of Axonius.
  2. HTTPS Proxy (optional, default: empty) - A proxy to use when connecting to the value supplied in Hostname or IP Address.
    • If supplied, Axonius will utilize the proxy when connecting to the value supplied in Hostname or IP Address.
    • If not supplied, Axonius will connect directly to the value supplied in Hostname or IP Address.
  3. For details on the common adapter connection parameters and buttons, see Adding a New Adapter Connection.

tanium_asset_add_connection_dialog.png

Advanced Settings

The Tanium Asset adapter has advanced settings which control the logic for fetching assets.

  1. Number of assets to fetch per page (required, default: 200) - Control the number of assets that are fetched per page.
  2. Number of seconds to wait in between each page fetch (required, default: 1) - Control the number of seconds to wait in between each page.
  3. Devices to exclude by host name (optional, default: Empty) - A comma seperated list of device host names to exclude.
  4. Devices to exclude by model (optional, default: Empty) - A comma seperated list of device models to exclude.
  5. Devices to exclude by domain (optional, default: Empty) - A comma seperated list of device domain names to exclude.
  6. Populate Dynamic Attributes (optional, default: False) - Dynamically create fields in Axonius for all attributes returned by Tanium Asset.
    • If enabled, adapter specific fields will be dynamically created in Axonius for all attributes returned for each asset with the appropriately mapped type as defined in Tanium.
    • If disabled, adapter specific fields will not be dynamically created in Axonius.
NOTE

For details on general advanced settings under the Adapter Configuration tab, see Adapter Advanced Settings.

Required Ports

Axonius must be able to communicate with the value supplied in Hostname or IP Address via the following ports:

  • TCP port 443: REST API

Required Permissions

Required Module Permissions

A Module Role named Asset Report Reader exists that provides these Module Permissions:

  1. Asset Report Read

Assigning Required Permissions

These are the steps to assign the Required Permissions to the value supplied in User Name:

  1. Log in to the value supplied in Hostname or IP Address with an account that has the permissions necessary to edit users.
  2. In the navigation menu:
    1. Go to the Administration > Users page.
  3. In the Users Page:
    1. Select the value supplied in User Name from the list of users.
    2. Click View User.
  4. In the User Administration page in the Roles and Effective Permissions section:
    1. Click Edit Roles.
  5. In the Assign Roles page in the Role Management > Grant Roles section:
    1. Click Edit.
  6. In the Edit Grant Roles dialog window:
    1. Select the role named Asset Report Reader.
    2. Click Save.
  7. In the Assign Roles page:
    1. Click Show Preview to Continue.
    2. Click Save.
  8. In the Notice dialog window:
    1. Click Continue.
  9. The User Administration page should look like this:
    tanium_useradmin_asset
  10. Perform the steps in Verifying Permissions

Verifying Permissions

  1. Log in to the value supplied in Hostname or IP Address with the values supplied in User Name and Password.
  2. In the navigation menu:
    1. Go to the Asset page.
  3. In the Asset menu of the Asset page:
    1. Go to the Reports page.
  4. In the Asset Reports page:
    1. Click the All Assets report

Field Mappings

The following tables show how values are mapped to fields in Axonius.

Aggregated Fields

Source Destination
asset: ci_applicable_patch OS Available Security Patches
asset: ci_installed_application Installed Software
asset: ci_custom_tags Adapter Tags
asset: ci_logical_disk Hard Drives
asset: ci_network_adapter Network Interfaces
asset: ci_windows_installer_application Installed Software
asset: computer_id UUID
asset: computer_id, asset: system_uuid, asset: serial_number, asset: id ID
asset: computer_name Hostname
asset: cpu_core CPU: Cores
asset: cpu_manufacturer CPU: Manufacturer
asset: cpu_name CPU: Description
asset: cpu_speed CPU: Clockspeed (GHZ)
asset: created_at First Seen
asset: domain_name Domain
asset: email Email Address
asset: last_seen_at Last Seen
asset: manufacturer Device Manufacturer
asset: model Device Model
asset: operating_system OS
asset: os_platform OS: Platform
asset: os_version OS: Build
asset: ram Total RAM (GB)
asset: serial_number Device Manufacturer Serial
asset: service_pack OS: Service Pack
asset: system_uuid ID
asset: updated_at Last Seen
asset: uptime Uptime (Days)
asset: user_name Last Used Users
asset: virtual_host Is Virtual Host
asset: ci_custom_tags Custom Tags

Adapter Specific Fields

Source Destination
asset: ci_application_last_used_time Application Last Used Time
asset: ci_sql_server SQL Server
asset: city Asset City
asset: cloudTags Asset Chassis Type
asset: computer_id Asset Computer ID
asset: country Asset Country
asset: created_at Asset Created At
asset: department Asset Department
asset: disk_total_space Asset Total Disk Space (GB)
asset: display_adapter_count Asset Number of Display Adapters
asset: id Asset ID
asset: last_seen_at Asset Last Seen At
asset: number_of_fixed_drive Asset Number of Fixed Drives
asset: number_of_logical_processor Asset Number of Logical Processors
asset: operating_system Asset OS
asset: os_platform Asset OS Platform
asset: os_version Asset OS Version
asset: phone_number Asset Phone Number
asset: service_pack Asset OS Service Pack
asset: updated_at Asset Updated At
asset: user_name Asset User Name
Tanium Server Tanium Server Name, Tanium Server Version, Module Version

Version Matrix

This adapter has only been tested with the versions marked as supported, but may work with other versions. Please contact Axonius Support if you have a version that is not listed and it is not functioning as expected.

Version Supported Notes
Tanium versions prior to 7.3.314.3424 No This adapter utilizes the REST API, which was added in Tanium 7.3.314.3424
Tanium 7.3.314.3424 Yes
Tanium 7.3.314.3668 Yes
Tanium 7.3.314.4147 Yes
Tanium 7.3.314.4250 Yes
Tanium Cloud Yes

Asset Module Versions

Modules within Tanium have their own version which is separate from the platform version.

Version Supported Notes
Asset Module 1.6.5.0002 Yes
Asset Module 1.8.0.0078 Yes
Asset Module 1.9.1.0007 Yes

What's Next
First name must have atleast 2 characters. Numbers and special characters are not allowed.
Last name must have atleast 1 characters. Numbers and special characters are not allowed.
Enter a valid email
Enter a valid password
Your profile has been successfully updated.