Integrations

You can set up integrations with other supported platforms to allow OT Security to sync with your other cybersecurity platforms.

Tenable Products

You can integrate OT Security with Tenable Security Center and Tenable Vulnerability Management. OT Security shares data with the other platforms through these integrations. The synced data includes OT vulnerabilities as well as data discovered by IT-type Tenable Nessus scans initiated from OT Security.

Note: OT Security does not send data for Hidden assets to Tenable Security Center and Tenable Vulnerability Management via the integration.
Note: To integrate the platforms, OT Security must be able to reach Tenable Security Center and/or Tenable Vulnerability Management via port 443. Tenable recommends that you create a specific user on Tenable Security Center and/or Tenable Vulnerability Management to be used as the integration user to OT Security.

Tenable Security Center

To integrate Tenable Security Center, create a Universal Repository in Tenable Security Center to store OT Security data and take a note of the repository ID. For more information, see Universal Repositories.

Note: Tenable recommends creating a specific user on Tenable Security Center that is used to integrate with OT Security. The user should have the role of Security Manager/Security Analyst or Vulnerability Analyst and be assigned to the “Full Access” group.

To integrate Tenable Security Center:

  1. Go to Local Settings > Integrations.

    The Integrations page appears.

  2. In the upper-right corner, click Add Integration Module.

    The Add Integration Module panel appears.

  3. In the Module Type section, select Tenable Security Center.

  4. Click Next.

    The Module Definition panel with the relevant fields appears.

  5. In the Hostname/IP box, type the hostname or IP of your Tenable Security Center.

  6. In the Username box, type the account user ID.

  7. In the Password box, type the password of your account.

  8. In the Repository ID, provide the Universal Repository ID.

  9. In the Sync Frequency drop-down box, set the frequency to sync the data.

  10. Click Save.

    OT Security creates the integration and shows the new integration on the Integrations page.

  11. Right-click the new integration and click Sync.

Tenable Vulnerability Management

Note: You need to first generate an API key in the Tenable Vulnerability Management console (Settings > My Account > API Keys > Generate). You are given an Access Key and a Secret Key which you can then enter in the OT Security console when configuring the integration.

To integrate Tenable Vulnerability Management:

  1. Go to Local Settings > Integrations.

    The Integrations page appears.

  2. In the upper-right corner, click Add Integration Module.

    The Add Integration Module panel appears.

  3. In the Module Type section, select Tenable Vulnerability Management.

  4. Click Next.

    The Module Definition panel with the relevant fields appears.

  5. In the Access Key box, provide the access key.

  6. In the Secret Key box, provide the secret key.

  7. In the Sync Frequency drop-down box, select the frequency to sync the data.

Tenable One

To integrate with Tenable One, follow the steps in Integrate with Tenable One.

Palo Alto Networks – Next Generation Firewall

You can share asset inventory information discovered by OT Security with your Palo Alto system.

To integrate OT Security with your Palo Alto Networks Next Generation Firewalls (NGFW):

  1. Go to Local Settings > Integrations.

    The Integrations page appears.

  2. In the upper-right corner, click Add Integration Module.

    The Add Integration Module panel appears.

  3. In the Module Type section, select Palo Alto Networks NGFW.

  4. Click Next.

  5. In the Hostname/IP box, type the hostname or IP address of your Palo Alto NGFW account.

  6. In the Username box, type the username of your NGFW account.

  7. In the Password box, type the password of your NGFW account.

  8. Click Save.

    OT Security saves the integration.

Aruba – ClearPass Policy Manager

You can share asset inventory information discovered by OT Security with your Aruba system.

To integrate OT Security with your Aruba ClearPass account:

  1. Go to Local Settings > Integrations.

    The Integrations page appears.

  2. In the upper-right corner, click Add Integration Module.

    The Add Integration Module panel appears.

  3. In the Module Type section, select Aruba Networks ClearPass.

  4. Click Next.

  5. In the Hostname/IP box, type the hostname or IP address of your Aruba Networks ClearPass account.

  6. In the Username box, type the username of your Aruba Networks ClearPass account.

  7. In the Password box, type the password of your Aruba Networks ClearPass account.

  8. In the Client ID box, type the client ID of your Aruba Networks ClearPass account.

  9. In the API Client Secret box, type the API Client Secret of your Aruba ClearPass account.

  10. Click Save.

    OT Security saves the integration.