Tenable provides full database support for WALLIX Bastion integrations. Complete the following steps to configure Windows credentials for scans with WALLIX Bastion.
- WALLIX Bastion account
- Tenable Vulnerability Management or Tenable Nessus Manager account
To configure WALLIX Bastion using Windows integration:
- Log in to your Tenable user interface.
- Click Scans.
Click + New Scan.
The Scan Templates page appears.
Select Advanced Scan.
The selected scan template appears.
In the Name box, type a name for the scan.
- In the Targets box, type an IP address, hostname, or range of IP addresses.
- (Optional) Add a description, folder location, scanner location, and specify target groups.
Click the Credentials tab.
The Credentials options appear.
In the Host section, click Windows.
The selected credential options appear.
In the Authentication Method drop-down box, select Wallix Bastion.
The Wallix Bastion options appear.
Configure the Wallix Bastion credentials.
Option Description Required
The IP address for the WALLIX Bastion host.
The port on which the WALLIX Bastion API communicates. By default, Tenable Nessus Manager uses 443.
Basic authentication (with WALLIX Bastion user interface username and Password requirements) or API Key authentication (with username and WALLIX Bastion-generated API key requirements).
Your WALLIX Bastion user interface login username.
yes Wallix Password Your WALLIX Bastion user interface login password. Used for Basic authentication to the API. yes Wallix API Key The API key generated in the WALLIX Bastion user interface. Used for API Key authentication to the API. yes Get Credential by Device Account Name
The account name associated with a Device you want to log in to the target systems with.
Note: If the device has more than one account, you must enter the specific device name for the account you want to retrieve credentials for. Failure to do this may result in credentials for the wrong account returned by the system.
Required only if you have a target and/or device with multiple accounts.
This is enabled by default.
Caution: The integration fails if you disable HTTPS.
Verify SSL Certificate
This is disabled by default and unsupported in WALLIX Bastion PAM integrations.
- Click Save.
Click the arrow next to the Save button to drop down the launch button.
To verify the integration is working, click the Launch button to initiate an on-demand scan.
After the scan completes, click the scan to view the results.