Tenable One Open Connector Mapping
Mapping Behavior and Limitations
This section outlines the expected behavior and logic rules that govern how source file columns are mapped to Tenable Exposure Management attributes during the Tenable One Open Connector configuration process.
These rules ensure consistent data transformation, accurate field population, and help prevent unintended data loss. Understanding the logic behind standard one-to-one mappings, supported exceptions, and system-enforced constraints is essential for configuring a successful data import using the Tenable One Open Connector.
One-to-One Mapping (Default Behavior)
By default, each column in your source file can be mapped to only one Tenable Exposure Management attribute.
| Rule | Example |
|---|---|
| You cannot map a single source column cannot to more than one Tenable field. |
You cannot map the hostname column to both Asset > Name and Asset > Tags. |
Note: If you attempt to reuse a source column in multiple mappings (outside of allowed exceptions), Tenable Exposure Management displays a validation error.
One-to-Many Mapping Exceptions (Multi-Value Fields)
Some fields in Tenable Exposure Management are designed to accept multiple values and support mapping from multiple source columns.
| Supported Tenable Exposure Management Fields | Example |
|---|---|
|
Asset > MAC Addresses Asset > IPs (IPv4 Addresses) Asset > External Tags |
If you map several source columns (e.g., ip1, ip2, ip3) to Asset > IPs, Tenable Exposure Management concatenates their values into a comma-separated list during ingestion. |
Many-to-One Mapping Limitation (Overwrites)
Avoid mapping multiple source columns to a single-value Tenable field (e.g., Asset > Name, Asset > OS Version).
| Rule | Expected Behavior |
|---|---|
|
The last source column selected overwrites all previous values mapped to that field. |
This causes silent data loss. Tenable Exposure Management does not retain earlier values. |
Tip: Use one source column per Tenable Exposure Management field unless mapping to an approved multi-value field.
External Tags Prefixing Behavior
Tenable Exposure Management automatically adds context to mapped external tags.
| Expected Behavior | Purpose | Example |
|---|---|---|
|
When you map any column to Assets > External Tags, Tenable Exposure Management adds the source column name to the tag value. |
This enables better filtering and traceability in Tenable Exposure Management. |
If the column Business_Unit contains Finance, it becomes: Business_Unit: Finance. |
Mandatory Fields
To proceed with syncing the connector, you must define certain mandatory fields. These fields vary based on the selected asset type.
For Assets:
| Asset Type | Required Fields |
|---|---|
| Device |
At least one of the following:
|
| Container | Assets > Asset Name |
| Web Applications | Assets > Asset Name |
| Resource (Cloud) | Assets > Asset Name |
For Findings:
| Attribute | Required Fields |
|---|---|
| Finding Attributes (Common) |
Severity |
Mapping Reference Tables
The following reference tables displays the available mapping options when configuring the Tenable One Open Connector. They are designed to help you align your source file columns with the correct Tenable Exposure Management attributes based on the selected asset type.
Tip: For full setup instructions and usage details, see Tenable One Open Connector.
Device Mapping
Web Applications Mapping
| Attributes in Source File | Available Mapping Options in Tenable Exposure Management | Notes |
|---|---|---|
| Asset Attributes (Common) | Same as in Device (Common Finding Attributes) | None |
| Asset Attributes (WebApp Specific) | Assets > Asset Name | Maps to the primary name or identifier of the web application. |
| Assets > Webapp Homepage Screenshot Url | None | |
| Finding Attributes (Common) | Same as in Device (Common Finding Attributes) | None |
| Finding Attributes (WebApp Specific) | Findings > URL | Maps The specific URL or endpoint where the finding was detected. |
Resources (Cloud) Mapping
| Attributes in Source File | Available Mapping Options in Tenable Exposure Management | Notes |
|---|---|---|
| Asset Attributes (Common) | Same as Device (Custom Attributes, Tags, Dates) | None |
| Asset Attributes (Cloud Resources Specific) | Assets > Asset Name | None |
| Assets > Cloud Provider | Maps the service provider (e.g., AWS, Azure, GCP). | |
| Assets > Cloud Resource Type | Maps the type of resource (e.g., S3 Bucket, Azure VM, GCP Instance). | |
| Assets > External Identifier | Maps a unique identifier, typically the ARN or equivalent ID from the cloud provider. | |
| Finding Attributes (Common) | Same as in Device (Common Finding Attributes) | None |
Containers Mapping
| Attributes in Source File | Available Mapping Options in Tenable Exposure Management | Notes |
|---|---|---|
| Asset Attributes (Common) | Same as Device (Custom Attributes, Tags, Dates) | None |
| Asset Attributes (Containers Specific) | Asset Name | None |
| Assets > Operating Systems | None | |
| Assets > Container Image Path | Maps the full path and/or registry location of the image. | |
| Assets > Image Digest | Maps the SHA-256 cryptographic hash of the container image content. | |
| Assets > Container Image Tags | None | |
| Finding Attributes (Common) | Same as in Device (Common Finding Attributes) | None |