Integrations

You can set up integrations for OT Security EM with other Tenable products — Tenable Security Center and Tenable Vulnerability Management. This enables OT Security to send data to Tenable Security Center and Tenable Vulnerability Management. The data from OT Security EM includes OT Security vulnerabilities as well as data discovered by IT-type Tenable Nessus scans initiated from OT Security. By setting up the integrations on the OT Security EM level, you provide a single source of data, and alleviate the need to configure separate integrations for each site.

.

Note: To integrate the platforms, OT Security must be able to reach Tenable Security Center and/or Tenable Vulnerability Management via port 443. Tenable recommends that you create a specific user on Tenable Security Center and/or Tenable Vulnerability Management to be used as the integration user to OT Security.

You can integrate Tenable Security Center with OT Security EM so that OT Security EM sends information to the designated repositories.

Note: Tenable recommends that you create Tenable Security Center repositories with matching names to OT Security Sites to optimize the mapping of Sites to repositories. The exact OT Security Site names must be contained within the Tenable Security Center repository names. For example, for a site named “London”, a repository name of “OT_London” or “London – OT”. Sites without a matching repository send information to the default repository that you designate during the integration setup. For detailed instructions, click the button on the Integrations page.

To integrate Tenable Security Center:

  1. Go to Local Settings > Integrations.

  2. Click Add Integration.

    The Add Integration wizard opens with the Module Type page.

  3. Click Tenable Security Center, then click Next.

    The Module Definition page appears.

  4. In the Hostname\IP box, type a hostname or an IP address of the Tenable Security Center system.

  5. In the Username box, type the username associated with the Tenable Security Center system.

  6. In the Password box, type the password associated with the Tenable Security Center system.

  7. In the Default Repository ID box, type the ID for the repository that can serve as the default destination for any synced information that does not have a designated repository (see the note).

  8. In the Sync Frequency box, set the sync frequency for the integration.

  9. To test the connection, click Test Connection.

  10. Click Save.

    Note: Tenable recommends that you create a specific user on Tenable Security Center to integrate with OT Security EM. The user must have the Security role.

You can integrate Tenable Vulnerability Management with OT Security EM after generating an API key in the Tenable Vulnerability Management console.

Note: First generate an API key in the Tenable Vulnerability Management console (Settings > My Account > API Keys > Generate). You are given an Access Key and a Secret Key which you provide in the OT Security console when configuring the integration. For more information, see Generate API Keys in the Tenable Vulnerability Management User Guide.

To integrate Tenable Vulnerability Management:

  1. Go to Local Settings > Integrations.

  2. Click Add Integration.

    The Add Integration wizard opens with the Module Type page.

  3. Click Tenable Vulnerability Management, then click Next.

    The Module Definition page of the Add Integration Module wizard opens.

  4. In the Access Key box, type the access key for the API.

  5. In the Secret Key box, type the secret key for the API.

  6. In the Sync Frequency box, set the sync frequency for the integration.

  7. To test the connection, click Test Connection.

  8. Click Save.