TOC & Recently Viewed

Recently Viewed Topics

Application Settings Section

The Industrial Security Settings section provides options for configuring the network settings for Industrial Security and changing remote Nessus Network Monitor Sensor Configurations.

Name Description
General

Login Banner

A text box in which you can specify a login banner.

Industrial Security Proxy

Industrial Security Restart Attempts

A text box in which you can specify the number of times the Industrial Security proxy attempts to restart the Industrial Security engine in the event the engine stops running. By default, this option is set to 10, but can be set to any value between 1 and 15. Once the restart attempt limit is reached, the proxy stops trying for 30 minutes.

Industrial Security Restart Interval

A text box in which you can specify the amount of time, in minutes, between Industrial Security restart attempts. By default, this option is set to 10, but can be set to any value between 1 and 3600.

Industrial Security Web Server

Enable SSL for Web Server

A check box that, when selected, enables SSL protection for connections to the web server. This check box is selected by default. Clearing the check box is not recommended, as it will allow unencrypted traffic to be sent between a web browser and Industrial Security. Custom SSL certificates may be installed in the /opt/industrial-security/var/industrial-security/ssl directory. Changes to this setting require that Industrial Security be restarted.

Note: Changing this option while Industrial Security is running makes communication between the client and server either encrypted or unencrypted. If you select or clear the Enable SSL for Web Server check box, the Web Server automatically ends your current Industrial Security session.

Minimum Password Length

A text box in which you can specify the lowest number of characters a password may contain. By default, this option is set to 5, but can be set to any value between 5 and 32.

Industrial Security Web Server Address

A text box in which you can specify a IPv4 or IPv6 address on which the Industrial Security web server listens. The default setting is 0.0.0.0, which instructs the web server to listen on all available IPv4 and 1Pv6 addresses.

Note: Link-local addresses are not supported for IPv6 addresses.

Industrial Security Web Server Port

A text box in which you can specify the Industrial Security web server listening port. The default setting is 8835, but can be changed as appropriate for the local environment.

Note: If you change the value in this field, the Web Server automatically ends your current Industrial Security session.

Industrial Security Web Server Idle Session Timeout

A text box in which you can specify the number of minutes of inactivity before a web session becomes idle. By default, this option is set to 30, but can be set to any value between 5 and 60.

Enable SSL Client Certificate Authentication

A check box that, when selected, allows the web server to accept only SSL client certificates for user authentication.

Enable Debug Logging for Industrial Security Web Server

A check box that, when selected, allows the web server to include debug information in the logs for troubleshooting issues related to the web server. The logs become very large if this option is routinely enabled.

Maximum User Login Attempts

A text box in which you can specify the number of times a user can enter an incorrect password in a 24 hour period before the user’s account is locked.

Max Sessions per User

A text box in which you can specify the number of concurrent sessions a user can have running at one time.

Enforce Complex Passwords

A check box that, when selected, forces the user’s passwords to contain at least one uppercase character, one lower case character, one digit, and one special character from the following: !@#$%^&*().

Restrict Access to TLS 1.2 or higher A check box that, when selected, forces the Industrial Security Web server to use TLS 1.2 or higher communications.
Plugins

Enable Automatic Plugin Updates

A check box that, when selected, allows Industrial Security to update its plugins automatically from the Tenable website on a daily basis. If the Industrial Security server is not connected to the Internet, it is recommended that you disable this option.

Tip: When the HTML Client updates, the web browser needs to be refreshed to utilize the new client. In some cases, the web browser’s cache must be deleted to view the new client.

Copyright 2017 Tenable, Inc. All rights reserved. Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trademarks of Tenable, Inc.  Tenable, Tenable.io, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc.  All other products or services are trademarks of their respective owners.