Database (Legacy) Integration

Caution: Support for SOAP requests are no longer be supported by CyberArk as of December 31, 2024. If you are using the CyberArk Legacy Integration which utilizes SOAP for API requests, Tenable recommends using our non-Legacy CyberArk Integration which supports REST API requests.

Tenable Nessus Manager provides full database support for CyberArk. Complete the following steps to configure Tenable Nessus Manager with CyberArk Vault

Requirements:

  • CyberArk account
  • Nessus Manager account

To configure Database integration:

  1. Log in to Tenable Nessus Manager‑.

  2. Click Scans.

    The My Scans page appears.

  3. Click + New Scan.

    The Scan Templates page appears.

  1. Select a Scan Template. For demonstration, the Advanced Network Scan template is used.

    The scan configuration page appears.

  2. In the Name box, type a name for the scan.
  3. In the Targets box, type an IP address, hostname, or range of IP addresses

  4. (Optional) You can add a description, folder location, scanner location, and specify target groups.

  5. Click the Credentials tab.

    The Credentials options appear.

  6. In the Categories drop-down, select Database.

    The Database options appear.

  7. Click Database.

    The Database options appear.

  8. Click the Database Type drop-down.

  9. The Database field options appear.

  10. From the Database Type drop-down, select Oracle.

  11. From the Auth Type drop-down, select CyberArk.

    The CyberArk field options appear.

  1. Configure each field for the Database authentication. See the Nessus User Guide to view detailed descriptions for each option.

    Caution: Tenable strongly recommends encrypting communication between the Nessus scanner and the CyberArk AIM gateway using HTTPS and/or client certificates. For information on securing the connection, refer to the Nessus User Guide and the Central Credential Provider Implementation Guide located at cyberark.com (login required).

  1. Click Save.