Submit Search

TOC & Recently Viewed

Recently Viewed Topics

Configure Tenable.sc

Before you begin

You must have Tenable.sc 5.7+.
You must have the Security Manager role in Tenable.sc.

Note: See the Tenable.sc User Guide for information about user role configuration.
Install the Tenable Plugin for JIRA.
In JIRA, identify or ceate the project where you want the plugin to create vulnerability issues.
You must have administrative access privileges in JIRA.

To configure Tenable.sc:

Log in to JIRA.
Click > Add-ons.
In the left navigation pane, click Tenable.sc Configuration.

The Tenable.sc Configuration page appears.

Use the table below to fill in the appropriate JIRA options.

Option Name	Description	Input
Enabled	(Optional) When enabled, Tenable.sc starts collecting data. When disabled, Tenable.sc stops collecting data. Note: If you stop data collection, then start it again, Tenable.sc provides data from the point where you previously stopped.	Check box
Address	The data collection source.	IP address or hostname
Username	Ensures user account authentication.	The username for Tenable.sc
Password	Ensures user account authentication	The password for Tenable.sc
Sync Since	(Optional) Specifies the start date of the vulnerability data you want to collect from Tenable.sc. If you do not specify a start date, data collection starts from the last date you last enabled data collection. Caution: If this option is changed, you must click the Reset Add-on button to save this change.	Date mm/dd/yyyy hh:mm
Lowest Severity to Store	Specifies the lowest level of severity of the vulnerabilities you want to collect from Tenable.sc. Tenable.sc severity levels include the following: info - The vulnerability has a CVSS score of 0 low - The vulnerability has a CVSS score between -.1 and 3.9. medium - The vulnerability has a CVSS score between 4.0 and 6.9. high - The vulnerability has a CVSS score between 7.0 and 9.9 critical - The vulnerability has a CVSS score of 10.0	Drop-down box
Interval	Specifies the interval, in minutes, at which JIRA queries Tenable.sc for vulnerability data. This interval must be set between 60 and 1,440 minutes.	Minutes
Default Project	Specifies the project where JIRA creates new vulnerability issues. Caution: If you change this option after initial configuration, you must click Reset Add-On to save your change.	Drop-down box
Default User	Specifies the user to whom the plugin automatically assigns the vulnerability issues. Note: The list only displays users that are members of the following groups: jira-administrators, jira-software-users, jira-core-users, and jira-servicedesk-users.	Drop-down box
Enable Proxy	(Optional) Enables the plugin to collect Tenable.sc data via a proxy server. If you select this option, the plug- in prompts you to enter the following: URL - (Required) The URL of the proxy server. Username - (Optional) The username that JIRA uses to connect to the proxy server. Password - (Optional) The password that JIRA uses to connect to the proxy server. Note: The username and password are optional if you use a proxy without authentication.	Check box and text boxes

Click Save, or if you have changed the Default Project or Sync Since options, click Reset Add-on.
Once the configuration is saved, the plugin creates custom fields in JIRA.

Copyright © 2020 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trademarks of Tenable,Inc. Tenable.sc, Tenable.ot, Lumin, Indegy, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective owners.