TOC & Recently Viewed

Recently Viewed Topics

Common Command Line Operations

Industrial Security can be run from the command line to update plugins and perform configuration tasks. Running the Industrial Security binary with the –h option displays a list of available options.

Note: You must stop Industrial Security before running command line operations.

Industrial Security Binary Locations

The Industrial Security binary for Linux can be found in the following location:

# /opt/industrial-security/bin/industrial-security

The Industrial Security binary for Windows can be found in the following location:

C:\Program Files\Tenable\industrial-security\industrial-security.exe

Industrial Security Command Line Options

Option Purpose

-a <activation code>

Enter the Activation Code to activate Industrial Security to enable plugin updates and monitoring functions.

--config --add "custom_paramater name" "parameter value"

Add a custom configuration parameter for Industrial Security or Industrial Security Proxy. The double quote characters are required, although single quotes may be used when special characters are required.

--config --delete "custom_parameter name"

The delete command may be used to remove custom configuration parameters.

--config --list

Lists the current Industrial Security and Industrial Security Proxy configuration parameters. Parameter values are listed to the left of the colon character and are case sensitive. The value of the parameter displays to the right of the colon character.

--config "parameter name" ["parameter value"

Displays the defined parameter value. If a value is added at the end of the command, the parameter updates with the new setting. The double quote characters are required, and single quotes may be used when special characters are required.

-d debug mode

Runs Industrial Security in debug mode for troubleshooting purposes. This option causes the system to use more resources and should be enabled only when directed by a Tenable Support Technician.

-h

DISlays the command line options help file.

-k

DISlays the Industrial Security activation status.

-L

DISlays a list of the license declarations.

-m

Shows various aspects of memory usage during the processing of the Industrial Security command.

Industrial Security --users --add

Use to add a new user to Industrial Security with the expected values of: ["username" "password" admin]: add new user. Expected values for “admin” flag are either 1 - grant user administrative privileges, or 0 - don’t grant user administrative privileges.

Industrial Security --users --chpasswd

Use to change a Industrial Security user's password.

Industrial Security --users --delete

Use to remove a user from Industrial Security.

--register-offline <license file>

Registers Industrial Security in offline mode when you insert the license file obtained from Tenable.

--update-plugins <plugins tarball>

If Industrial Security is not running in offline mode, the tarball is optional. When no file is provided with this command, Industrial Security contacts a plugin feed server to download plugins directly.

When using Industrial Security in offline mode, updating the plugins requires downloading a tarball from Tenable. When updating the plugins from the command line, this command is used to identify the file to use for updating the plugins.

-v

Shows the version information about the installed instance of Industrial Security.

Copyright 2017 Tenable, Inc. All rights reserved. Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trademarks of Tenable, Inc.  Tenable, Tenable.io, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc.  All other products or services are trademarks of their respective owners.