TOC & Recently Viewed

Recently Viewed Topics

The "info" Field

The optional info field can be used to label each audit field with one or more external references. For example, this field will be used to place references from NIST CCE tags as well as CIS specific audit requirements. These external references are printed out in the final audit performed by Nessus and will be displayed in the Nessus report or through the SecurityCenter user interface.

Following is an example password audit policy that has been augmented to list references to a fictitious corporate policy:

<custom_item>

type: PASSWORD_POLICY

description: "Password History: 24 passwords remembered"

value_type: POLICY_DWORD

value_data: [22..MAX] || 20

password_policy: ENFORCE_PASSWORD_HISTORY

info: "Corporate Policy 102-A"

</custom_item>

If multiple policy references are required for a single audit, the string specified by the info keyword can make use of regular line breaks, or the \n separator to specify multiple strings. For example, consider the following audit with regular line breaks:

<custom_item>

type : CHECK_ACCOUNT

description : "Accounts:Rename Administrator account"

value_type : POLICY_TEXT

value_data : "Administrator"

account_type : ADMINISTRATOR_ACCOUNT

check_type : CHECK_NOT_EQUAL

info : "CCE-60

Tenable Best Practices Policy 1005-a

This items tests for the presence of the administrator account"

</custom_item>

Or using \n separator:

<custom_item>

type : CHECK_ACCOUNT

description : "Accounts:Rename Administrator account"

value_type : POLICY_TEXT

value_data : "Administrator"

account_type : ADMINISTRATOR_ACCOUNT

check_type : CHECK_NOT_EQUAL

info : "CCE-60\nTenable Best Practices Policy 1005-a\nThis items tests for the presence of the administrator account"

</custom_item>

Copyright 2017 - 2018 Tenable, Inc. All rights reserved. Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trademarks of Tenable, Inc. Tenable, Tenable.io, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective owners.