Requirements

To properly integrate Tenable with HashiCorp Vault you must meet the following requirements.

Tip: In partially air-gapped environments scanners need to be able to reach out to the Tenable HashiCorp Vault server. Tenable Security Center does not reach out to the HashiCorp Vault server. Be aware of what network paths need to be accounted for in your firewall/router configurations. Knowing where to start connection tracing helps to better troubleshoot if the integration fails to reach out to the HashiCorp Vault server.

Tenable Product

You must have an active account for at least one of the following Tenable products to integrate with HashiCorp Vault: Tenable Vulnerability Management, Tenable Security Center, or Tenable Nessus Manager.

Tenable Role

You must have the appropriate role for your Tenable account as listed below.

Tenable Vulnerability Management - Standard, Scan Manager, Administrator, or System Administrator

Tenable Security Center - Any

Tenable Nessus Manager - Standard, Administrator, or System Administrator

HashiCorp Vault Requirements

You must have an active HashiCorp Vault account. To create a HashiCorp Vault account, use the following steps.

  1. Install HashiCorp Vault.
  2. Start your HashiCorp Vault server.
  3. Create a Secret.
  4. Authenticate HashiCorp Vault.
  5. Deploy HashiCorp Vault.