Configure Tenable Nessus for Lieberman Database

Tenable Nessus provides full database support for Lieberman. Enable Database Plugins in Nessus in the scanner to display them in the output.

To configure Nessus for Lieberman database:

Log in to your Tenable user interface.
In the upper-left corner, click the button.

The left navigation plane appears.
In the left navigation plane, click Scans.

The Scans page appears.
In the upper-right corner of the page, click the Create a Scan button.

The Select a Scan Template page appears.
Select a scan template.

The scan configuration page appears.
In the Name box, type a name for the scan.
In the Targets box, type an IP address, hostname, or range of IP addresses.
(Optional) Add a description, folder location, scanner location, and specify target groups.
Click the Credentials tab.

The Settings pane appears.
Click the Database option.

The Database options appear.
In the Database Type drop-down box, select Oracle.
In the Auth Type drop-down box, click Tenable Nessus for Lieberman RED.

The Tenable Nessus for Lieberman RED options appear.

Configure each option for the Database authentication.

Option	Database Type	Description	Required
Username	All	The target system’s username.	yes
Lieberman host	All	The Lieberman IP/DNS address. Note: If your Lieberman installation is in a subdirectory, you must include the subdirectory path. For example, type IP address or hostname / subdirectory path.	yes
Lieberman port	All	The port on which Lieberman listens.	yes
Lieberman API URL	All	The URL Tenable Nessus for Lieberman REDTenable Security Center uses to access Lieberman.	no
Lieberman user	All	The Lieberman explicit user for authenticating to the Lieberman API.	yes
Lieberman password	All	The password for the Lieberman explicit user.	yes
Lieberman Authenticator	All	The alias used for the authenticator in Lieberman. The name should match the name used in Lieberman. Note: If you use this option, append a domain to the Lieberman user option, i.e., domain\user.	no
Lieberman Client Certificate	All	The file that contains the PEM certificate used to communicate with the Lieberman host. Note: If you use this option, you do not have to enter information in the Lieberman user, Lieberman password, and Lieberman Authenticator fields.	no
Lieberman Client Certificate Private Key	All	The file that contains the PEM private key for the client certificate.	no
Lieberman Client Certificate Private Key Passphrase	All	The passphrase for the private key, if required.	no
Use SSL	All	If Lieberman is configured to support SSL through IIS, check for secure communication.	no
Verify SSL Certificate	All	If Lieberman is configured to support SSL through IIS and you want to validate the certificate, check this option. Refer to Custom CA documentation for how to use self-signed certificates.	no
System Name	All	In the rare case your organization uses one default Lieberman entry for all managed systems, enter the default entry name.	no
Database Port	All	The port on which Tenable Nessus for Lieberman REDTenable Security Center communicates with the database.	yes
Database Name	DB2 PostgreSQL	(PostgreSQL and DB2 databases only) The name of the database.	no
Auth type	Oracle SQL Server Sybase ASE	(SQL Server, Oracle. and Sybase ASE databases only) SQL Server values include: Windows SQL Oracle values include: SYSDBA SYSOPER NORMAL Sybase ASE values include: RSA Plain Text	yes
Instance Name	SQL Server	The name for your database instance.	no
Service type	Oracle	Valid values include: SID SERVICE_NAME	no
Service	Oracle	The SID value for your database instance or a SERVICE_NAME value. The Service value you enter must match your parameter selection for the Service Type option.	yes

Do one of the following:
- If you want to save without launching the scan, click Save.
- If you want to save and launch the scan immediately, click Save & Launch.
  
  Note: If you scheduled the scan to run at a later time, the Save & Launch option is not available.