View and Remediate the Line of Change in IaC

For an IaC scan violation, you can view the exact line of code that needs correction. Tenable Cloud Security also provides a recommended configuration to remediate the issue.

To view and remediate:

  1. Access Tenable Cloud Security.
  2. In the left navigation bar, click Findings.

    The Vulnerabilities page appears.

  3. Click the Misconfigurations tab.

    The Misconfigurations page shows the failing policies and the number of impacted resources along with other details.

  4. Do one of the following:

    • Select the required failing policy to view its details.

    • Use the Search box to search and select a specific failing policy.

    • Use the following filters to filter and select a specific failing policy:

      Filter Description
      Projects Filters failing policies by projects.
      Cloud Filters failing policies by cloud accounts.
      Repositories Filters failing policies by repositories.
      Severity Filters failing policies by the severity of the failing policy.
      Violations Filters failing policies by policy groups
      Source Type

      Filters failing policies by IaC or Cloud.

    • The policy details pane appears.
  5. In the Impacted resources section, hover over the impacted resource that you want to remediate and click > Show config.
    The Config window with the impacted resource configuration appears.

  6. Click the Show Tenable Recommendation checkbox.
    Tenable Cloud Security shows the recommended configuration alongside the impacted resource configuration.

  7. Click to copy the configuration.
    A message confirms that Tenable Cloud Security copied the configuration to clipboard. You can use the recommended configuration to correct the impacted resource configuration.