Tenable.io
  • 2 Minutes to read
  • PDF

Tenable.io

  • PDF

Introduction


The integration of SAFE with Tenable.io allows SAFE users to discover and import the assets and their respective vulnerability assessment results. Users can do the assessment of assets at a pre-configured time interval, as well as the on-demand pull of assessment results for assets.

Users can configure the Tenable.io from Administration > SAFE Hooks > Assessment Tools

Prerequisites


To configure the tenable.io, you need the following details:

  1. API URL: The tenable instance URL
  2. Access Key: To get the API Key:
    1. Log in to your Tenable.io account as an administrator.
    2. Click the profile icon available in the top-right corner of the screen.
    3. Click the My Account option.
    4. Click the API Keys.
    5. Click the Generate button available at the bottom-right corner. The system generates the API key.
  3. Secret Key: To get the Secret Key:
    1. Log in to your Tenable.io account as an administrator. 
    2. Click the profile icon available in the top-right corner of the screen.
    3. Click the My Account option.
    4. Click the Secret Key.
    5. Click the Generate button available at the bottom-right corner. The system generates the Secret key.
  4. SSL Certificate
    • In the case of a CA-signed SSL certificate, mark the verify SSL certificate check box.
    • In the case of a Self-signed SSL certificate, provide a Tenable.io certificate fingerprint (SHA-256).
Info
You need Administrator privilege to generate the API key and Secret Key.

Configure Tenable.io


To configure tenable.io:

  1. Navigate to Administration > SAFE Hooks > Assessment Tools.
  2. Click the Configure button available on the tenable.io card.
  3. Enter the tenable.io API URL, Access Key, Secret Key, and Auto-Sync Frequency.
  4. If required, select the Import Asset from the tenable.io option.
  5. Mark the checkbox to verify the SSL Certificate or enter the tenable.io server certificate fingerprint (in case a self-signed certificate is used).
  6. Click the Test Connection button.
  7. Once the connection is verified, click Save Configuration.
  8. Enable the tenble.io toggle switch available at the top-right corner of the screen.

    tenable1

  9. Once the configuration is saved, users can click the Get Data button to discover the assets and import their VA assessment results. After the discovery is completed, the system displays the count of newly discovered assets. 
Notes:
  • Once the unconfirmed assets are reviewed and confirmed in SAFE, their VA scan results will be imported in the next sync.
  • The assets from Tenable.io are matched to existing assets in SAFE based on their IP addresses.
  • The VA scans should be scheduled and managed within Tenable.io. This integration only pulls the VA scan results that are already present for the respective assets in Tenable.io.
  • SAFE only supports importing VA results from Tenable.io for assets in the following verticals:
    • Cloud - SaaS Applications
    • Mobile Applications
    • Network and Security Nodes
    • Server
    • Storage
    • Thick Client Applications
    • Web Applications

View Assets


All the newly discovered assets will be added under the UnconfirmedAssets on the Manage Assets page.

tenable 2


Was this article helpful?

What's Next