Introduction

Last updated: January 30, 2025

The intention of this Tenable Cloud Platform Service Description Guide ("Service Description”) is to provide customers with a comprehensive understanding of service definitions for all hosted products. These include Tenable One, Tenable Vulnerability Management, Tenable Identity Exposure, Legacy Tenable Cloud Security, Tenable Attack Surface Management, Tenable Web App Scanning, and may include future product(s). Tenable may update this document periodically.

Service Terms and Policies

The following links access important term and policy documents that pertain to the Tenable Cloud Platform Services. Be sure to read these documents to understand the service clearly. If you have any questions, contact your Tenable sales representative.

• Tenable Software License Agreements, which includes the following:

  • Tenable Master Agreement

  • Tenable Data Processing Addendum

  • Service Level Agreement

• Tenable GDPR Alignment

• Pricing Model Definitions

• Tenable Technical Support Plans

Platform Regions

Users can find Supported Tenable Cloud Platform cloud regions and respective characteristics listed here.

Platform Network Connectivity

Access to the Tenable Cloud Platform is granted through publicly available endpoints. In all cases, customers are responsible for the required reliable connectivity complying with local and regional regulations. If customers are unable to meet the connectivity requirements for accessing the Tenable Cloud Platform through agents, scanners, UI, and APIs, Tenable recommends collaborating with internal network resources to establish reliable and uninterrupted connectivity. Potential solutions may include using a proxy, configuring explicit firewall access control lists, utilizing alternative circuits or routes, or setting up VPNs as necessary to achieve the desired outcome.

Platform Authentication and Access

Customers can configure authentication using a SAML v2 identity provider. User access is controlled with a role-based access control (RBAC) feature set. To access our API, customers have the option to create a distinct set of API keys that are unique to their account. The keys allow external applications to make authorized API calls to the Tenable Cloud API, without creating a session. For more information, see Authorization.

Platform License Elasticity and Compliance

Currently, the Tenable Cloud Platform provides license elasticity for customers to burst up to 10% above their license. Overutilization of license may result in in-product and email notifications and/or loss of function and access. In addition, customers are liable for all actual license usage (including overages) in accordance with the Tenable Master Agreement. Tenable will use commercially reasonable efforts to communicate directly with account owners prior to functional impact.

To aid in license hygiene and compliance, Tenable provides several resources to help customers to comply with contracted licenses:

• Tenable Scan Best Practices

• Tenable Vulnerability Management Licenses

• Asset Ageout Feature Usage

• Manual Asset Delete