Tenable Nessus
  • 28 May 2023
  • 2 Minutes to read
  • Dark
    Light
  • PDF

Tenable Nessus

  • Dark
    Light
  • PDF

Article Summary

Tenable Nessus is a vulnerability scanning platform for auditors and security analysts. This article explains the parameters needed to connect to Tenable Nessus, such as Host Address, Port, User Name and Password, Access API Key and Secret API Key. It also explains advanced settings such as Scan IDs include list, Only get devices with MAC, Hostname or correlatable IP address, Fetch only the most recent scan and Do not fetch devices with no MAC address and no hostname. Lastly it also mentions Fetch plugin output option.

Tenable Nessus is a vulnerability scanning platform for auditors and security analysts.

Parameters

  1. Host Address (required) - The hostname or IP address of the Tenable Nessus server.
  2. Port (optional, default: empty)
  3. User Name and Password (optional, default: empty) - The credentials for a user account that has the permissions to fetch assets.
    NOTE

    If Access API Key and Secret API Key are not supplied, you must specify User Name and Password.

  4. Access API Key and Secret API Key (optional, default: empty) - An API Key associated with a user account that has permissions to fetch assets. For details, see Tenable Nessus - Generate an API Key.
    NOTE

    If User Name and Password are not supplied, you must specify Access API Key and Secret API Key.

  5. Verify SSL (required, default: False) - Verify the SSL certificate offered by the value supplied in Host Address. For more details, see SSL Trust & CA Settings.
    • If enabled, the SSL certificate offered by the value supplied in Host Address will be verified against the CA database inside of Axonius. If the SSL certificate can not be validated against the CA database inside of Axonius, the connection will fail with an error.
    • If disabled, the SSL certificate offered by the value supplied in Host Address will not be verified against the CA database inside of Axonius.
  6. For details about the common adapter connection parameters and buttons, see Adding a New Adapter Connection.

nessus.png

Advanced Settings

Note:

Advanced settings can either apply for all connections for this adapter, or you can set different advanced settings and/or different scheduling for a specific connection, refer to ​Advanced Configuration for Adapters

  1. Scan IDs include list (optional, default: empty) - Specify a comma-separated list of Tenable Nessus scan IDs.
    • If supplied, all connections for this adapter will only collect devices discovered by Tenable Nessus scan IDs provided in this list.
    • If not supplied, all connections for this adapter will collect devices discovered by any Tenable Nessus scan.
  2. Only get devices with MAC, Hostname or correlatable IP address (required, default: False) - Choose whether to exclude fetching devices without MAC address, without hostname and without an IP address that can be correlated to other existing IP address.
    • If enabled, all connections for this adapter will only fetch devices having at least one of the following:
      • MAC address
      • Hostname
      • IP address that can be correlated with an existing IP address in Axonius.
    • If disabled, all connections for this adapter will fetch devices even if those do not have MAC address, no hostname and no IP address that can be correlated to other existing IP address.
  3. Fetch only the most recent scan (required, default: False) - Select this option to only fetch the most recent scan.
  4. Do not fetch devices with no MAC address and no hostname - Select whether to exclude fetching devices without a MAC address and without a hostname.
  5. Fetch plugin output- Select this option to fetch plugin output.
NOTE

For details on general advanced settings under the Adapter Configuration tab, see Adapter Advanced Settings.


What's Next
Changing your password will log you out immediately. Use the new password to log back in.
First name must have atleast 2 characters. Numbers and special characters are not allowed.
Last name must have atleast 1 characters. Numbers and special characters are not allowed.
Enter a valid email
Enter a valid password
Your profile has been successfully updated.