Login
    Contents x
    Tenable.io - Add IP Addresses to Target Group
    • 21 May 2023
    • 3 Minutes to read
    • Print
    • Dark
      Light
    • PDF
    Contents

    Tenable.io - Add IP Addresses to Target Group

    • Updated on 21 May 2023
    • 3 Minutes to read
    • Print
    • Dark
      Light
    • PDF
    Article Summary

    Tenable.io - Add IP Addresses to Target Group (Tenable.io - Add IP Addressess to Target Group) adds IP addresses to an existing Tenable.io target group or creates a new Tenable.io target group for:

    • Assets that match the results of the selected saved query, and match the Enforcement Action Conditions, if defined or assets selected on the relevant asset page.

    Tenable.io target groups allow you to set permissions for which hosts users can scan. By default, all users can scan all hosts. For more details about Tenable.io target groups, see Tenable.io online documentation.

    See Creating Enforcement Sets to learn more about adding Enforcement Actions to Enforcement Sets.

    General Settings

    • Enforcement Set name (required) - The name of the Enforcement Set. A default value is added by Axonius. You can change the name according to your needs.
    • Add description - Click to add a description of the Enforcement Set. It is recommended to describe what the Enforcement Set does.
    • Run action on assets matching following query (required) - Select an asset category and a query. The Enforcement Action will be run on the assets that match the query parameters.
    • Action name (required) - The name of the Main action. A default value is added by Axonius. You can change the name according to your needs.
    • Configure Dynamic Values - Toggle on to enter a Dynamic Value statement. See Creating Enforcement Action Dynamic Value Statements to learn more about Dynamic Value statement syntax.

    Required Fields

    These fields must be configured to run the Enforcement Set.

    • Use stored credentials from the Tenable.io Adapter (required, default: True) - Select this option to use the the first connected Tenable.io adapter credentials.
    NOTE
    To use this option, you must successfully configure a Tenable.io adapter connection.
    • Target group name - Specify the Tenable.io target group name to be updated/created.
    • Create new target group - Select to create a new target group in Tenable.io.
      • If enabled, Axonius will create a new target group in Tenable.io.
      • If disabled, Axonius will update the specified target group name in Tenable.io.

    • Compute Node - The Axonius node to use when connecting to the specified host. For more details, see Connecting Additional Axonius Nodes.

    Additional Fields

    These fields are optional.

    • Tenable.io domain (optional, default: empty) - The IP address or hostname of your Tenable.io management server.

      NOTE

      If Use stored credentials from the Tenable.io Adapter is disabled, this field is required.

    • Access API key and Secret API key (required) - These values must be created in the Tenable.io console. To generate an API key in the Tenable.io console, see Tenable.io - Generate an API Key.

      NOTE

      If Use stored credentials from the Tenable.sc Adapter is disabled, this field is required.

    • Verify SSL - Select whether to verify the SSL certificate of the server against the CA database inside of Axonius. For more details, see SSL Trust & CA Settings.

    • HTTPS Proxy - Connect the adapter to a proxy instead of directly connecting it to the domain.

    • Use public IP addresses - Select to add public IP addresses to Tenable.io.

    • Use private IP addresses - Select to add private IP addresses to Tenable.io.

    • Exclude IPv6 addresses - Select to add IPv6 addresses to the Tenable.io scan.

      • If enabled, Axonius will add only IPv4 addresses to Tenable.io.
      • If disabled, Axonius will add both IPv4 and IPv6 addresses to Tenable.io.

    • Override current IP address list - Select to override the current Tenable.sc asset IP list.

      • If enabled, Axonius will override the current Tenable.sc asset IP list.
      • If disabled, Axonius will add IP addresses to the existing Tenable.sc asset IP list.

    • CIDR exclude list - Specify a comma-separated list of CIDRs to be excluded.

      • If supplied, Axonius will not add to Tenable.sc IP addresses in the IP range of the specified CIDRs.
      • If not supplied Axonius will add to Tenable.sc IP addresses in any IP range.

    For more details about other Enforcement Actions available, see Action Library.

    Was this article helpful?
    What's Next
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout