Set up Tenable Core

To configure Tenable Core using CLI:

1. Connect to the OT Security appliance using the serial console as described in Clean Install Tenable Core + OT Security.

2. Log in with username wizard and password admin.

   The Network Manager terminal interface appears.

   

3. (Optional) To configure the management IP address, type y.

4. Select nic0 (or nic2 if using the split-port configuration).

   

5. Press Enter.

   The Edit Connection window appears.

   

6. Navigate using the arrow keys and configure your required IP address, Default-Gateway, DNS Servers, and so on. You can change this configuration later.

7. Using the down-arrow, navigate to the bottom of the screen and select <OK>.

   The Network Manager window appears.

8. Select <Quit>.

   Note: By default nic0 is preconfigured with an IP address of 192.168.1.5/24. You can use this IP address to finish configuring the system using the Tenable Core interface (port 8000) from any IP network reachable PC.

9. Type y and follow the prompts to create an administrator account. Use this account only to log in to Tenable Core (terminal console, SSH, and the Tenable Core user interface). Use separate accounts for the OT Security application.

   

10. After you create the account, use it to log in into the terminal via the console or using a network connection: via SSH or the Tenable Core interface (https://<mgmt-IP>:8000).

To complete the initial configuration via the Tenable Core user interface (available on https://<mgmt-IP>:8000) you need a working network connection to the appliance.

If you have not configured the management IP address, you can use either a directly connected PC or an appropriately configured network to reach the Tenable Core user interface on either of the following:

• Port 1 / nic0 — default management interface, pre-configured with IP address 192.168.1.5/24

• Port 4 / nic3 — engineering interface, pre-configured with IP address 192.168.3.3/24. If not changed later, this can be used for recovery procedures.

To connect to Tenable Core directly via your PC or laptop:

1. Connect an Ethernet cable between your PC and one of the pre-configured ports on the OT Security appliance.

2. On Windows, use win+R to open Run and type ncpa.cpl to open Network Connections.

   

   

3. Right-click on your network connection (named Local Area Connection) and select Properties.

   The Local Area Connection Properties window appears.

   

4. Select Internet Protocol Version 4 (TCP/IPv4) and click Properties.

   The Internet Protocol Version 4 (TCP/IPv4) Properties window appears.

   

5. Select Use the Following IP address.

6. In the IP address box, type an appropriate IP address for the interface you are connecting to. For example, 192.168.1.10 for the default address of Port 1 / nic0 or 192.168.3.10 for the default address of Port 4 / nic3.

7. In the Subnet mask box, type 255.255.255.0.

8. Click OK.

9. From your Chrome browser, navigate to https://<mgmt-ip>:8000.

   

10. If you have not yet configured the administrator user account, the system prompts you to do so now, then re-login with your newly created user. For more information, see Create and initial Administrator Account.

    After creating the administrator account, Tenable recommends that you configure the management IP address. If you intend to use the split-port configuration, make sure the interfaces can reach the appropriate networks. For more information, see Network Considerations.

    Note: A split-port configuration moves the management from port 1 (nic0) to port 3 (nic2). You might lose connectivity and may need to reconnect to Tenable Core using a new IP address, depending on your network configuration.
    Note: To configure or change the management IP address, log in back into Tenable Core and enable administrative access and edit the network configuration.