Plugin Rules

Required user role when using Tenable Nessus Manager: Standard, Administrator, or System Administrator

Plugin rules allow you to re-prioritize the severity of plugin results to better account for your organization’s security posture and response plan.

The Plugin Rules page allows you to hide or change the severity of any given plugin. In addition, you can limit rules to a specific host or specific timeframe. From this page you can view, create, edit, and delete your rules.

Note: You cannot apply custom plugin rules to PCI templates.

Example Plugin Rule

Host: 192.168.0.6

Plugin ID: 79877

Expiration Date: 12/31/2022

Severity: Low

This example rule applies to scans performed on IP address 192.168.0.6. Once saved, this plugin rule changes the default severity of plugin ID 79877 (CentOS 8: rpm (CESA-2014:1976) to a severity of low until 12/31/2022. After 12/31/2022, the results of plugin ID 79877 returns to its critical severity.

For more information on managing plugin rules, see Manage Plugin Rules.