TOC & Recently Viewed

Recently Viewed Topics

Perform a Remote Synchronization Migration

Required Tenable Core User Role: Administrator with reuse my password for privileged tasks enabled

The Tenable Appliance to Tenable Core migration process varies depending on your current Tenable Appliance deployment and your desired Tenable Core deployment. To confirm the remote synchronization (rsync) method suits your deployment, see Tenable Appliance to Tenable Core Migration Overview.

Note: This process is only for migrating Tenable.sc data on Tenable Appliance to Tenable CoreTenable.sc.

Before you begin:

  • Confirm that your Tenable Core has free disk space in /, equal to or greater than the size of your Tenable Appliance backup file.

  • Confirm that your Tenable Core instance has free disk space in /opt twice the size of your current Tenable Appliance application disk space usage.

    Tip:To determine the disk space used on your Tenable Appliance, see Appliance Interface in the Tenable Appliance User Guide.

    To determine your available disk space on Tenable Core, see Manage System Storage in Tenable Core + Tenable.sc in the Tenable Core User Guide.

  • Confirm that your Tenable Appliance instance and Tenable Core instance can communicate via SSH over port 22.
  • Confirm SSH access is enabled for the Tenable Appliance tns user, as described in the knowledge base article.
  • Confirm your Tenable Appliance meets the version requirements, as described in Version Requirements.
  • Deploy and get started, as described in Get Started with Tenable CoreTenable.sc in the Tenable Core User Guide.
  • Copy the private key for the Tenable Appliance tns user to a directory on Tenable Core.
  • If you are migrating in an air-gapped environment, manually download the RPM for the version of the application being migrated from the Tenable downloads page.

To migrate to Tenable Core via the remote synchronization method:

  1. In Tenable Core, log in to the shell via the Terminal page or the console.

  2. (Optional) If your Tenable.sc version on Tenable Core is later than your version on Tenable Appliance, run the following command to downgrade Tenable Core to your Tenable Appliance version:

    pkexec /usr/libexec/tenablecore/backup/applicationDowngrade.sh SecurityCenter
  3. Run the following command to stop Tenable.sc.

    pkexec systemctl stop SecurityCenter
  4. Run the following command to remove any existing Tenable.sc data.

    pkexec pkill -9 -u tns
  5. Run the following command to remove the installed application of Tenable.sc.

    pkexec rm -rf /opt/sc/* /opt/sc/.*
  6. Run the following command:

    pkexec rsync -e "ssh -x -T -i <SSH key path> " -a --hard-links --human-readable --fake-super --xattrs --acls --sparse --exclude /support/logs/* [email protected]<appliance IP address>:/opt/sc/ /opt/sc/

    Tip: If you are running rsync, you can enable progress output by adding one of the following to the command:

    --info=progress2
    or
    --progress

    The synchronization begins.

    Tip: If the synchronization fails or is disrupted, run the command again to resume the synchronization.

    The synchronization finishes.

  7. Connect to the Tenable Appliance interface.

  8. Click Manage SecurityCenter.

  9. Click Stop SecurityCenter.

    Tenable.sc stops.

  10. In the Tenable Appliance, run the following command to confirm your SSH and shell are only jobs listed.

    ps U tns
  11. Log back into Tenable Core via the console or terminal page.
  12. Run the following synchronization command again:

    pkexec rsync -e "ssh -x -T -i <SSH key path> " -a --hard-links --human-readable --fake-super --xattrs --acls --sparse --exclude /support/logs/* [email protected]<appliance IP address>:/opt/sc/ /opt/sc/

    The rsync command finishes.

  13. Run the following command to reinstall your current version of Tenable.sc:

    pkexec yum reinstall SecurityCenter
  14. Run the following command to restore SELinux context on Tenable Core:

    pkexec restorecon -RF /opt/sc

    Your SELinux context is restored.

  15. Log in to Tenable Core UI.
  16. Click Tenable.sc.
  17. In Tenable.sc Installation Info, click Start.

    The system installs Tenable.sc.

What to do next:

  • Perform the post-migration actions for your deployment type, as described in Post-Migration Actions.
  • Upgrade Tenable.sc to the latest version, as described in Upgrade in the Tenable.sc User Guide.

Copyright © 2019 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trademarks of Tenable, Inc.. Tenable.sc, Lumin, Assure, and the Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective owners.