TOC & Recently Viewed

Recently Viewed Topics

Determine Current User Permissions

User Permissions: Basic (16)

To determine the permissions for your user account, use the API endpoint described below.

HTTP Request

Note: To authenticate your request, be sure to include API keys in the HTTP header of the request. For more information, see Authorization.

Request Path Syntax

GET https://cloud.tenable.com/session

Request Path Parameters

None.

Request Path Example

See "Request Path Syntax."

Request Body Syntax

None.

HTTP Response

Response Codes

Status Description
200 Returns data for the current session. For more information, see "Response Body Syntax."
403 Returned if you do not have permission to view the session data.
429

Returned if you attempt to send too many requests in a specific period of time. For more information, see Rate Limiting.

Response Body Syntax

{ "id": {integer}, "uuid": {string}, "uuid_id": {string}, "username": {string}, "user_name": {string}, "email": {string}, "name": {string}, "type": {string}, "permissions": {integer}, "enabled": {boolean}, "last_login_attempt": {integer}, "login_fail_count": {integer}, "login_fail_total": {integer}, "container_id": {integer}, "container_uuid": {string}, "container_name": {string}, "features": [ {feature_name}: {boolean} ], "apps":{array}, "group_uuids":{array}, "groups":{array}, "lastlogin": {integer} }

Response Body Attributes

Attribute Type Description
id integer The ID of the user account.
uuid string The UUID of the user account.
uuid_id string The UUID of the user account.
username string The username.
user_name string The username.
email string The email account of the user.
name string The name of the user.
type string

The authentication type for the user account. For example, local indicates that the user account authenticates directly in Tenable.io.

permissions integer The user permissions assigned to this user account.
enabled boolean A value indicating whether the user account is enabled or disabled.
last_login_attempt integer The date and time in Unix format when the user account credentials were last used in a failed login attempt.
login_fail_count integer The number of failed login attempts for this user account in the last 24 hours.
login_fail_total integer The total number of failed login attempts for this user account.
container_id integer The ID of the Tenable.io instance where the user has been granted access.
container_uuid string The UUID of the Tenable.io instance where the user has been granted access.
container_name string The human readable name of the Tenable.io instance where the user has been granted access.
features array An array of boolean values representing specific features enabled for the Tenable.io instance.
apps array

The applications licensed for the Tenable.io instance where the user has been granted access.

 

group_uuids array An array of UUIDs of the user groups to which the user belongs. The items in this array are strings.
groups array An array of human readable names of the user groups to which the user belongs. The items in this array are strings.
lastlogin integer The date and time in Unix format when the user account credentials were last used to successfully log in.

Response Body Example

{ "id":2, "uuid":"fb76f456-9a6f-4f63-8553-1cee234eb777", "uuid_id":"fa76e456-9a6f-4f63-8553-1ced233eb777", "username":"user2@example.com", "user_name":"user2@example.com", "email":"user2@example.org", "name":"Sample User", "type":"local", "permissions":64, "enabled":true, "last_login_attempt":1540942030719, "login_fail_count":0, "login_fail_total":14, "container_id":766315, "container_uuid":"3bc442f4-0cd1-4de0-95a3-3d8e587931ff", "container_name":"demo", "features":{ "access_groups":true, "access_groups_migration":true, "advanced_search_v2":true, "agent_triage_m2":true, "agent_updates":true, "analytics":true, "analytics_v2":true, "asset_deleting_ui":true, "asset_management":true, "audits_workbench":false, "aws_connector_v1":true, "cfl_core_ssor":true, "connectors_gen2":false, "container_security":true, "container_security_gen2":true, "container_security_gen2_runtime":true, "credentials_mgmt":true, "credentials_mgmt_v2":true, "dashboards_gen2":false, "dashboards_gen2_blank_canvas":false, "dashboards_gen2_export":false, "dashboards_gen2_export_png":false, "dashboards_gen2_lumin_enabled":false, "dashboards_gen2_schedule":false, "dashboards_gen2_tag_filter":false, "dashboards_gen2_widget_filters":false, "dashboards_gen2_widget_library":false, "dynamic_tagging":true, "environment_management":true, "export_dashboard":true, "export_dashboard_pdf":true, "general_data_protection_compliance":true, "import_data":false, "indexing_v2":true, "lumin_beta_allowed":true, "lumin_beta_enabled":true, "modify_vulnerability":false, "pci_multiscan":true, "qualys_connector":true, "qualys_vuln_connector":true, "rbac":true, "recast_rules":true, "reporting":true, "scan_service":true, "scans_gen2":true, "state":true, "suggest_feature":true, "system":false, "tagging":true, "vm_service_query":true, "vulnerability_management_gen2":true, "was_discovery":true, "was_multi_scanning":true, "was_plugin_selection":true, "was_scan_progress":true, "webapp_scanning":true, "webapp_scanning_gen2":true }, "apps":{ "consec": "standard", "was": "standard" }, "group_uuids": [ "f764340b-0165-45d2-a574-36af488cbdd2" ], "groups": [ { "uuid": "f764340b-0165-45d2-a574-36af488cbee5", "name": "Columbia office", "permissions": 0, "container_uuid": "8f9d0b84-ede2-4954-a0c9-0bde292ac36f", "id": 1 } ], "lastlogin":1543864186682 }

Reference Guide

https://cloud.tenable.com/api#/resources/session/get

Copyright © 2019 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trademarks of Tenable, Inc.. Tenable.sc, Lumin, Assure, and the Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective owners.