Tenable PCI ASV Scan Templates
Scan templates contain granular configuration settings for your scans. You can use the Tenable PCI ASV scan templates to create custom scan configurations for your organization. Then, you can run scans based on scan settings configured in the templates. Scan settings enable you to refine parameters in scans to meet your specific network security needs. The scan settings you can configure vary depending on the template on which a scan is based.
Tenable PCI ASV provides the following scan templates:
| Template | Description |
|---|---|
| Nessus Scanner | |
| Internal PCI Network Scan |
Performs an internal PCI DSS (11.2.1) vulnerability scan. This template creates scans that you can use to satisfy internal (PCI DSS 11.2.1) scanning requirements for ongoing vulnerability management programs that satisfy PCI compliance requirements. You can use these scans for ongoing vulnerability management and to perform rescans until passing or clean results are achieved. You can provide credentials to enumerate missing patches and client-side vulnerabilities. Note: While the PCI DSS requires you to provide evidence of passing or "clean" scans on at least a quarterly basis, you must also perform scans after any significant changes to your network (PCI DSS 11.2.3). |
| PCI Quarterly External Scan |
Performs quarterly external scans as required by PCI. |
| Web Application | |
| PCI | PCI A scan that assesses web applications for compliance with Payment Card Industry Data Security Standards (PCI DSS) for Tenable PCI ASV. (This scan also allows you to view and edit the Request Redirect Limit. The default value for this limit is 3.) |