Assets Configuration and Schedule Import

Note:Tenable does not, currently, support Domain Separation in the Tenable for Assets application.

This document describes how to configure Tenable for Assets for the following Tenable platforms:

Note: Tenable for Assets only supports Tenable.sc versions 5.7 and later.

The asset integration allows ServiceNow toretrieveand accurately match Tenable assets to your existing CIs. Tenable for VR and ITSM both rely on this app for finding the correct asset related to vulnerabilities from Tenable.

Note: It is extremely important that you completely setup and tune this integration to correctly match Tenable Assets to ServiceNow CIs before moving on to Tenable for VR or Tenable for assets.

You must be logged in with a ServiceNow account that has the x_tsirm_tio_cmdb.admin role to perform the setup process.

To setup the asset integration configuration, you must:

  1. Log in to ServiceNow.
  2. Go to the Tenable Connector Application.
  3. Go to Tenable Connectors.
  4. In the left navigation panel, click Connectors.

  5. Click the Tenable connector you want to use: Tenable.io or Tenable.sc.

    The Tenable Connector page appears.

  6. Scroll to the Scheduled Jobs section.

  7. Click New.

    The Tenable Scheduled Import page appears.

    By default, the Tenable Product and Connector fields populate with the Tenable application/connector you selected in step 3.

  8. From the Tenable Application drop-down box, select Tenable for Assets.

    Tenable.io

    Tenable.sc

  9. (For Tenable.io)From the Import Export drop-down box, select Import. Import is selected by default.
  10. In the Name text box, type a unique name for this scheduled job.

  11. Configure the options for your import.

    Option Description
    Last Update Pull

    Sets a date and time for the next pull.

    Note: This field is set by the scheduled job as it runs. You should not make changes to this field. If you want to modify this option, please contact Tenable for assistance.
    Active If selected, an asset sync is automatically queued when you submit the import or export. Default setting: selected.
    Order Prioritizes when the import should run.(This option populates when you select the Tenable Application in step 6. However, you can modify it by typing in the text box.)
    Default Chunk Size The number of records pulled in segments during the import. (This option populates when you select the Tenable Application in step 6. However, you can modify it by typing in the text box.)
    SC Query (Only for Tenable.sc) Select the Tenable.sc query to use for the import.
    Configuration  
    Record Update Sync Frequency

    The frequency of pulling assets (in minutes). The default setting is once a day (1,440 minutes).

    Note: This option is hard coded and can only be changed via the code.
  12. Click Submit.

Note: Ensure that you accurately configure the assets. Asset configuration is key in making the integration work properly. Errors in these configuration steps, effect all future configurations.  

Note: Please work with your ServiceNow administrator to perform the following task. The information provided below should be used as a guideline. Your administrator can assist in tuning the export to achieve your desired results.

  1. Log in to ServiceNow.
  2. Go to the Tenable Connector Application.
  1. In the left navigation panel, click Connectors.

  2. Click the Tenable connector you want to use: Tenable.io or Tenable.sc.

    The Tenable Connector page appears.

  3. Scroll to the Scheduled Jobs section.

  4. Click New.

    The Tenable Scheduled Import page appears.

    By default, the Tenable Product and Connector fields populate with the Tenable application/connector you selected in step 3.

  5. From the Tenable Application drop-down box, select Tenable for Assets.

  6. From the Import Export drop-down box, select Export. Import is selected by default.
  7. In the Name text box, type a name for the export.

  8. Configure the options for your export.

    Option Description
    Last Update Pull Sets a date and time for the next pull.
    Active If selected, an asset sync is automatically queued when you submit the import or export. Default setting: selected.
    Order The order that the import should run. (This option populates when you select the Tenable Application in step 6. However, you can modify it by typing in the text box.)
    Default Chunk Size The number of records pulled in segments during the import. (This option populates when you select the Tenable Application in step 6. However, you can modify it by typing in the text box.)
    Configuration  
    Record Update Sync Frequency

    The frequency of pulling assets (in minutes). The default setting is once a day (1,440 minutes).

    Note: This option is hard coded and can only be changed via the code.
    Source table and Conditions

    Select source tables and use filter conditions to specify export information.
  1. Click Submit.

Note: Please work with your ServiceNow administrator to perform the following task. The information provided below should be used as a guideline. Your administrator can assist in tuning the export to achieve your desired results.

  1. Log in to ServiceNow.
  2. Navigate to Tenable for Assets > Configuration > CI to SC Asset Groups.
  3. Delete the default export.

    Note: Tenable does not recommend using the default export because it uses predefined ServiceNow sysids that can be overwritten during the upgrade process.

  4. In the upper-right corner of the page, from the application picker drop-down box, select Global.
  5. Click New.

  6. In the Name text box, type a name for the export.
  7. In the Connector text box, type the connector to use for the import.
  8. From the Group Type drop-down box, select the type of asset group to create.
  9. In the Filter section, filter the records you want to export.
  10. Click Submit.