TOC & Recently Viewed

Recently Viewed Topics

Manage User Access Authorizations

Users can access Tenable.io using the following methods:

When you create a new user, all access methods are authorized by default. Depending on your organization's security policies, you may need to disable certain access methods, for example, disable username and password login to enforce SSO.

Use the Tenable.io Platform API to view, grant, and revoke access authorizations for a user. The following are examples of cURL commands to get a user's existing authorizations and then revoke the authorization for username and password login:

curl -H "X-APIKeys: accessKey=access_key;secretKey=secret_key" -X GET https://cloud.tenable.com/users/user_ID/authorizations
curl -H "X-APIKeys: accessKey=access_key;secretKey=secret_key" -d '{"api_permitted":true,"password_permitted":false,"saml_permitted":true}' -X PUT https://cloud.tenable.com/users/user_ID/authorizations

For more information, see Get User Authorizations and Update User Authorizations in the Tenable Developer Hub.

Copyright © 2019 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trademarks of Tenable, Inc.. Tenable.sc, Lumin, Assure, and the Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective owners.