Recently Viewed Topics
Perform a Remote Synchronization Migration
Required Tenable Core User Role: Administrator with reuse my password for privileged tasks enabled
The Tenable Appliance to Tenable Core migration process varies depending on your current Tenable Appliance deployment and your desired Tenable Core deployment. To confirm the remote synchronization (rsync) method suits your deployment, see Tenable Appliance to Tenable Core Migration Overview.
Note: This process is only for migrating Tenable.sc data on Tenable Appliance to Tenable Core + Tenable.sc.
Before you begin:
Confirm that your Tenable Core has free disk space in /, equal to or greater than the size of your Tenable Appliance backup file.
Confirm that your Tenable Core instance has free disk space in /opt twice the size of your current Tenable Appliance application disk space usage.
Tip:To determine the disk space used on your Tenable Appliance, see Appliance Interface in the Tenable Appliance User Guide.
To determine your available disk space on Tenable Core, see Manage System Storage in Tenable Core + Tenable.sc in the Tenable Core User Guide.
- Confirm that your Tenable Appliance instance and Tenable Core instance can communicate via SSH over port 22.
- Confirm SSH access is enabled for the Tenable Appliance
tnsuser, as described in the knowledge base article.
- Confirm your Tenable Appliance meets the version requirements, as described in Version Requirements.
- Deploy and get started, as described in Get Started with Tenable Core + Tenable.sc in the Tenable Core User Guide.
- Copy the private key for the Tenable Appliance
tnsuser to a directory on Tenable Core.
If you are migrating in an air-gapped environment, manually download the RPM for the version of the application being migrated from the Tenable downloads page.
To migrate to Tenable Core via the remote synchronization method:
In Tenable Core, log in to the shell via the Terminal page or the console.
(Optional) If your Tenable.sc version on Tenable Core is later than your version on Tenable Appliance, run the following command to downgrade Tenable Core to your Tenable Appliance version:pkexec /usr/libexec/tenablecore/backup/applicationDowngrade.sh SecurityCenter
Run the following command to stop Tenable.sc.pkexec systemctl stop SecurityCenter
Run the following command to remove any existing Tenable.sc data.pkexec pkill -9 -u tns
Run the following command to remove the installed application of Tenable.sc.pkexec rm -rf /opt/sc/* /opt/sc/.*
Run the following command:pkexec rsync -e "ssh -x -T -i <SSH key path> " -a --hard-links --human-readable --fake-super --xattrs --acls --sparse --exclude /support/logs/* [email protected]<appliance IP address>:/opt/sc/ /opt/sc/
Tip: If you are running
rsync, you can enable progress output by adding one of the following to the command:
The synchronization begins.
Tip: If the synchronization fails or is disrupted, run the command again to resume the synchronization.
The synchronization finishes.
Connect to the Tenable Appliance interface.
Click Manage SecurityCenter.
Click Stop SecurityCenter.
In the Tenable Appliance, run the following command to confirm your SSH and shell are only jobs listed.ps U tns
- Log back into Tenable Core via the console or terminal page.
Run the following synchronization command again:pkexec rsync -e "ssh -x -T -i <SSH key path> " -a --hard-links --human-readable --fake-super --xattrs --acls --sparse --exclude /support/logs/* [email protected]<appliance IP address>:/opt/sc/ /opt/sc/
Run the following command to reinstall your current version of Tenable.sc:pkexec yum reinstall SecurityCenter
Run the following command to restore SELinux context on Tenable Core:pkexec restorecon -RF /opt/sc
Your SELinux context is restored.
- Log in to Tenable Core UI.
- Click Tenable.sc.
In Tenable.sc Installation Info, click Start.
The system installs Tenable.sc.
What to do next: