SSH Integration

To configure SSH integration for CyberArk with Tenable.io:

  1. Log in to Tenable.io.
  2. Click Scans.
  3. Click + New Scan.

  4. Select a Scan Template for the scan type required for your scan. For demonstration purposes, the Advanced Network Scan template is used.

  5. Enter a descriptive Name and IP address(es) or hostname(s) of the scan Targets. In addition, you can add a description, folder location, scanner location, and specify target groups.

  6. Once the Name and Targets are configured, click Credentials.

  7. Select SSH from the left-hand menu.
  8. Click Authentication method.

    A drop-down appears.

  9. Select CyberArk.

    The CyberArk SSH options appear.

  10. Configure each field for SSH authentication. See the Tenable.io User Guide to get detailed descriptions for each option.

  1. Click Save to finalize the changes.

  2. To verify the integration is working, click the launch button (highlighted below) to initiate an on-demand scan.

  3. Once the scan has completed, select the completed scan and look for Plugin ID 12634, which validates that authentication was successful. If the authentication is not successful, refer to the Debugging CyberArk Issues section of this document.