SAML for Tenable Security Center

You can configure Tenable Security Center to accept credentials from your SAML identity provider. This allows for an additional layer of security, where the SAML credentials are certified for use within Tenable Security Center. Once you enable SAML for a user, they can log in to Tenable Security Center directly through their identity provider, which automatically signs them in and redirects them to the Tenable Security Center landing page.

While several configuration steps occur directly in the Tenable user interface, the entire SAML configuration process includes several processes across multiple applications. This guide describes three of the most commonly used Identity Providers (IdPs) and how to configure them for use with Tenable Security Center SAML from start to finish.

Considerations for Advanced SAML Features

Because Tenable Security Center cannot accept private keys to decrypt SAML assertions, Tenable Security Center does not support SAML assertion encryption. If you want to configure SAML authentication in Tenable Security Center, choose an identity provider that does not require assertion encryption and confirm that assertion encryption is not enabled.

For information about Tenable Security Center communications encryption, see Encryption Strength.

Note: Tenable Support does not assist with configuring or troubleshooting advanced SAML features.

To get started, see the following topics: