Privilege Escalation with ARCON Credentials

Tenable Vulnerability Management supports the use of privilege escalation, such as su and sudo, when using SSH through the ARCON authentication method. Arcon credential privilege escalation is available for Tenable Vulnerability Management, Tenable Nessus, and Tenable Security Center.

To configure SSH integration:

1. Log in to Tenable Vulnerability Management, Tenable Nessus, or Tenable Security Center.
2. Click Scans

3. Click + New Scan.

4. Select a Scan Template.

   The scan configuration page appears.

5. In the Name box, type a name for the scan.

6. In the Targets box, type an IP address, hostname, or range of IP addresses.
7. (Optional) Add a description, folder location, scanner location, and specify target groups.

8. Click the Credentials tab.

   The Credentials options appear.

9. In the Select a Credential menu, select the Host drop-down.

10. Select SSH as the Type and ARCON as the Authentication Method.

    

11. Select an option for the Elevate Privileges With field.

    Note: Multiple options for privilege escalation are supported, including su, su+sudo and sudo. For example, if sudo is selected, additional fields for Escalation Account Name, Escalation Username, and Location of Sudo (Directory) are provided and can be completed to support authentication and privilege escalation through Arcon.

    Note: Additional information about all of the supported privilege escalation types and their accompanying fields can be found in the Tenable Security Center, Nessus, and Tenable Vulnerability Management user guides.