Tenable.io - Add IP Addresses to Scan
- 22 Sep 2024
- 2 Minutes to read
- Print
- DarkLight
- PDF
Tenable.io - Add IP Addresses to Scan
- Updated on 22 Sep 2024
- 2 Minutes to read
- Print
- DarkLight
- PDF
Article summary
Did you find this summary helpful?
Thank you for your feedback
Tenable.io - Add IP Addresses to Scan (Add IPs to Tenable.io Scan) adds the IP addresses to an existing Tenable.io scan for:
- Assets that match the results of the selected saved query, and match the Enforcement Action Conditions, if defined or assets selected on the relevant asset page.
See Creating Enforcement Sets to learn more about adding Enforcement Actions to Enforcement Sets.
Note:
- Not all asset categories are supported for all Enforcement Actions.
- See Actions supported for Activity Logs, Adapters Fetch History, and Asset Investigation modules.
- See Actions supported for Vulnerabilities.
- See Actions supported for Software.
General Settings
- Action name - The name of this Enforcement Action. The system sets a default name. You can change the name.
- Configure Dynamic Values - Toggle on to enter a Dynamic Value statement. See Creating Enforcement Action Dynamic Value Statements to learn more about Dynamic Value statement syntax.
- Use stored credentials from the Tenable.io Adapter - Select this option to use the the first connected Tenable.io adapter credentials.NOTETo use this option, you must successfully configure a Tenable.io adapter connection.
Required Fields
These fields must be configured to run the Enforcement Set.
- Scan name - Specify the Tenable.io scan name to be updated.
Compute Node - The Axonius node to use when connecting to the specified host. For more details, see Connecting Additional Axonius Nodes.
Additional Fields
These fields are optional.
- Tenable.io domain - The IP address or hostname of your Tenable.io management server.
- Access API key and Secret API key - These values must be created in the Tenable.io console. To generate an API key in the Tenable.io console, see Tenable.io - Generate an API Key.
- Verify SSL (optional) - Select whether to verify the SSL certificate of the server against the CA database inside of Axonius. For more details, see SSL Trust & CA Settings.
- HTTPS Proxy (optional) - Connect the adapter to a proxy instead of directly connecting it to the domain.
- Do not use network interfaces IPs - This option should be used only when Use public IP addresses is selected. The Enforcement Action will only add the IP addresses from Public IPs and not from network interfaces. When using only the option Use public IP addresses, a combination of public IPs from network interfaces and the public IP field are added to the scan.
- Use public IP addresses - Select to add public IP addresses. This option is useful when needing to scan IP addresses from cloud providers, like AWS.
- Use private IP addresses - Select to only add private IP addresses.
- Use hostnames - Hostnames from query results will be sent to scan in Tenable.io.
- Exclude IPv6 addresses - When enabled, Axonius will add only IPv4 addresses to Tenable.io and not IPv6 addresses. Otherwise, both IPv4 and IPv6 addresses will be added.
- CIDR exclude list - Specify a comma-separated list of CIDRs to be excluded.
- Scan schedule - When enabled, select a Frequency and then configure the schedule options.
For more details about other Enforcement Actions available, see Action Library.
Was this article helpful?