Login
    Contents x
    Tanium Asset
    • 07 Dec 2023
    • 4 Minutes to read
    • Print
    • Dark
      Light
    • PDF
    Contents

    Tanium Asset

    • Updated on 07 Dec 2023
    • 4 Minutes to read
    • Print
    • Dark
      Light
    • PDF
    Article Summary

    The Tanium Asset adapter provides an inventory of hardware and software assets including servers, laptops, and desktops for thorough insight

    Parameters

    1. Hostname or IP Address (required) - The Hostname or IP address of the Tanium server that Axonius can communicate with via the Required Ports. This adapter supports both on-premise and Tanium Cloud instances. When connecting to a Tanium Cloud instance, "-api" must be added to the end of the subdomain of your Tanium Cloud instance. For example: "domain.cloud.tanium.com" should be entered as "domain-api.cloud.tanium.com".
    2. User Name or API Token ID (required) - The credentials for a user account that has the Required Permissions to fetch assets. If an API token is being used for authentication, this must be the ID of the API token. The Token ID column in Tanium may be hidden.
    3. Password or API Token (required) - The credentials for a user account that has the Required Permissions to fetch assets. If an API token is being used for authentication, this must be the API token string.
    More information on API Tokens
    • When connecting to a Tanium Cloud instance, an API token must be used.
    • When creating an API token in Tanium, the default value for "Expire in Days" is 7. It is recommended to set this value to the maximum allowed value of 365.
    • For more information, see Managing API Tokens.
    1. Name or ID of View (optional) - The name or ID of a View in Tanium Asset to use when fetching assets.
    More information on Tanium Asset Views
    • If you are connecting to Tanium 7.5 or higher, it is strongly recommended to use a View when fetching assets from the Tanium Asset module.
    • See the Tanium Asset Documentation on Configuring Views for more details on working with Views in Tanium Asset.

    1. Verify SSL - Select whether to verify the SSL certificate of the server against the CA database inside of Axonius. For more details, see SSL Trust & CA Settings.

    2. HTTPS Proxy (optional) - Connect the adapter to a proxy instead of directly connecting it to the domain.

    To learn more about common adapter connection parameters and buttons, see Adding a New Adapter Connection.

    tanium_asset_add_connection_dialog.png

    Advanced Settings

    Note:

    Advanced settings can either apply for all connections for this adapter, or you can set different advanced settings and/or different scheduling for a specific connection, refer to ​Advanced Configuration for Adapters.

    The Tanium Asset adapter has advanced settings which control the logic for fetching assets.

    1. Number of assets to fetch per page (required, default: 200) - Control the number of assets that are fetched per page.
    2. Number of seconds to wait in between each page fetch (required, default: 1) - Control the number of seconds to wait in between each page.
    3. Devices to exclude by host name (optional) - A comma-separated list of device host names to exclude.
    4. Devices to exclude by model (optional) - A comma-separated list of device models to exclude.
    5. Devices to exclude by domain (optional) - A comma-separated list of device domain names to exclude.
    6. Populate Dynamic Attributes (optional) - Dynamically create fields in Axonius for all attributes returned by Tanium Asset.
      • If enabled, adapter specific fields will be dynamically created in Axonius for all attributes returned for each asset with the appropriately mapped type as defined in Tanium.
      • If disabled, adapter specific fields will not be dynamically created in Axonius.
    7. Add running services to installed software (optional) - Select to make ci_running_services visible and queryable.
    Note:

    To learn more about Adapter Configuration tab advanced settings, see Adapter Advanced Settings.


    Required Ports

    Axonius must be able to communicate with the value supplied in Hostname or IP Address via the following ports:

    • TCP port 443: REST API

    Required Permissions

    Required Module Permissions

    A Module Role named Asset Report Reader exists that provides these Module Permissions:

    • Asset Report Read

    Assigning Required Permissions

    These are the steps to assign the Required Permissions to the value supplied in User Name:

    1. Log in to the value supplied in Hostname or IP Address with an account that has the permissions necessary to edit users.
    2. In the navigation menu:
      1. Go to the Administration > Users page.
    3. In the Users Page:
      1. Select the value supplied in User Name from the list of users.
      2. Click View User.
    4. In the User Administration page in the Roles and Effective Permissions section:
      1. Click Edit Roles.
    5. In the Assign Roles page in the Role Management > Grant Roles section:
      1. Click Edit.
    6. In the Edit Grant Roles dialog window:
      1. Select the role named Asset Report Reader.
      2. Click Save.
    7. In the Assign Roles page:
      1. Click Show Preview to Continue.
      2. Click Save.
    8. In the Notice dialog window:
      1. Click Continue.
    9. The User Administration page should look like this:
      tanium_useradmin_asset
    10. Perform the steps in Verifying Permissions.

    Verifying Permissions

    1. Log in to the value supplied in Hostname or IP Address with the values supplied in User Name and Password.
    2. In the navigation menu:
      1. Go to the Asset page.
    3. In the Asset menu of the Asset page:
      1. Go to the Reports page.
    4. In the Asset Reports page:
      1. Click the All Assets report

    Version Matrix

    This adapter has only been tested with the versions marked as supported, but may work with other versions. Please contact Axonius Support if you have a version that is not listed and it is not functioning as expected.

    VersionSupportedNotes
    Tanium versions prior to 7.3.314.3424NoThis adapter utilizes the REST API, which was added in Tanium 7.3.314.3424
    Tanium 7.3.314.3424Yes
    Tanium 7.3.314.3668Yes
    Tanium 7.3.314.4147Yes
    Tanium 7.3.314.4250Yes
    Tanium 7.4.4.1250Yes
    Tanium 7.4.6.1088Yes
    Tanium 7.5.5.1162Yes
    Tanium CloudYes

    Asset Module Versions

    Modules within Tanium have their own version, which is separate from the platform version.

    VersionSupportedNotes
    Asset Module 1.6.5.0002Yes
    Asset Module 1.8.0.0078Yes
    Asset Module 1.9.1.0007Yes
    Asset Module 1.19.158.0000Yes
    Was this article helpful?
    What's Next
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout