Configure a Tenable Nessus Scan for Windows Logins

Tenable Nessus allows you to configure your scan configurations with the credentials needed for Windows logins. You can do so during the Create a Scan process, or you can add credentials to an existing scan configuration.

Before you begin, configure your Windows system for authenticated scanning as described in Credentialed Checks on Windows.

To configure a Tenable Nessus scan configuration for Windows logins:

  1. In the top navigation bar, click Scans.

    The My Scans page appears.

  2. Do one of the following:

    • Click New Scan to create a new scan and select a template.

    • Click My Scans in the left navigation bar, choose an existing scan, then click the Configure button.

  3. In the scan settings, click the Credentials tab.

    The Credentials menu opens.

  4. In the Categories drop-down menu, select Host.

  5. In the Host category, click Windows.

    A Windows credentials pane appears.

  6. Select an authentication method. Depending on the method, the remaining Windows settings change.

  7. Depending on the authentication method, specify the SMB account username, password or hash, and domain.

    To view the Windows credential setting descriptions, see Windows.

  8. Click Save. Tenable Nessus saves the new Windows credentials.