TOC & Recently Viewed

Recently Viewed Topics

Local Repositories

For general information about repositories, see Repositories.

IPv4/IPv6 Repositories

These are the most common types of repositories used with SecurityCenter. They store IPv4 and IPv6 data from active and passive scans. Data stored in local repositories can be shared between organizations and includes the full range of event and vulnerability metadata. The table below describes configurable options for IPv4 and IPv6 local repositories:

Option Description

General

Name

The repository name.

Description

(Optional) A description for the repository.

Data

IP Ranges

Allowed ranges for importing vulnerability data. Addresses may be a single IP address, IP range, CIDR block, or any comma-delimited combination.

Access

Organizations

Defines organizations that have access to the vulnerability data within the repository. Within the Organizations section, select or deselect the box next to the organization name to grant or deny that organization access to the repository information. When initially selecting the organization, a prompt appears to either grant or deny access to all the groups within the organization. If granted, all groups are given access to the repository information. If denied, groups within the organization must explicitly be given access on a per group basis.

Advanced Settings

Generate Trend Data

Note: If trending is not selected, any query that uses comparisons between repository snapshots (e.g., trending line charts) is unavailable.

This option allows for a periodic snapshot of the .nessus data for vulnerability trending purposes. This option is useful in cases where tracking data changes is important. In situations where repository datasets do not change frequently – negating the need for trending – disable this option to minimize disk space usage.

Days Trending

Sets the number of days for the trending data to track.

Enable Full Text Search

Determines if the trending data presented is indexed for a full text search.

LCE Correlation

Log Correlation Engine servers that receive the vulnerability correlation information from this repository.

Mobile Repositories

The Mobile repository is a local type that stores data from various MDM servers. The MDM servers currently supported include ActiveSync, AirWatch MDM, Apple Profile Manager, Good MDM, and MobileIron. The table below describes configurable options for mobile local repositories:

Option Description

General

Name

The repository name.

Description

Descriptive text for the repository.

MDM

Type

This setting determines if the repository stores ActiveSync, AirWatch MDM, Apple Profile Manager, Good, or MobileIron types of mobile data.

The authentication settings available vary depending on the type selected.

Scanner

This setting determines which Nessus scanner is used when scanning the MDM server. Only one Nessus scanner may be used to add data to the mobile repository.

Schedule

Sets the schedule for the MDM server to be scanned to update the Mobile repository. On each scan, the current data in the repository is removed and replaced with the information from the latest scan.

Access

Organizations

Defines organizations that have access to the vulnerability data within the repository. Within the Organizations section, select or deselect the box next to the organization name to grant or deny that organization access to the repository information. When initially selecting the organization, a prompt appears to either grant or deny access to all the groups within the organization. If granted, all groups are given access to the repository information. If denied, groups within the organization must explicitly be given access on a per group basis.

Copyright 2017-2018 Tenable, Inc. All rights reserved. Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trademarks of Tenable, Inc. Tenable, Tenable.io, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective owners.