Install Tenable Security Center
Required User Role: Root user
Note: A basic understanding of Linux is assumed throughout the installation, upgrade, and removal processes.
Caution: When performing sudo
installs, use sudo –i
to ensure the proper use of environmental variables.
Caution: During the installation process, Tenable Security Center produces a log file in a temporary location: /tmp/sc.install.log
. Once the installation process finishes, the file is stored here: /opt/sc/admin/logs/install.log
. Do not remove or modify these files; they are important for debugging in case of a failed installation.
Note: If your Tenable Security Center will manage more than 10,000 active IPs, you must update the Apache configuration file after you install and before you use Tenable Security Center.
Note: You must connect an external PostgreSQL database if your Tenable Security Center installation meets any of the following criteria:
-
Your Tenable Security Center instance has over 100,000 assets.
-
Your Tenable Security Center instance is a non-rpm installation.
For information about new features, resolved issues, third-party product updates, and supported upgrade paths, see the release notes for Tenable Security Center 6.5.x.
Before you begin:
-
Complete system prerequisites, as described in Before You Install.
-
Download the installation RPM file from the Tenable Security Center downloads page. If necessary, depending on the operating system of the host, move the installation RPM file onto the host.
-
Confirm the integrity of the installation RPM file by comparing the download checksum with the checksum on the Tenable Security Center downloads page, as described in the knowledge base article.
-
If your organization requires Tenable Security Center to use /dev/random instead of /dev/urandom to generate random number data for secure communication functions, modify the random data source as described in Use /dev/random for Random Number Data Generation.
To install Tenable Security Center:
-
On the host where you want to install Tenable Security Center, open the command line interface (CLI).
-
Run one of the following commands to install the RPM:
# yum install SecurityCenter-x.x.x-el6.x86_64.rpm- or -
# dnf install SecurityCenter-x.x.x-el8.x86_64.rpmOutput similar to the following is generated:
# dnf install SecurityCenter-6.x.x-es6.x86_64.rpm
Preparing... ########################################### [100%]
1:SecurityCenter ########################################### [100%]
Installing Nessus plugins ... complete
Applying database updates ... complete.
By default, SecurityCenter will listen for HTTPS requests on ALL available interfaces. To complete your installation, please point your web browser to one of the following URL(s):
https://x.x.x.x
Starting SecurityCenter services
[ OK ] SecurityCenter services: [ OK ]
#
The system installs the package into /opt/sc and attempts to start all required daemons and web server services.
Tip: In rare cases, a system restart is required after installation in order to start all services. For more information, see Start, Stop, or Restart Tenable Security Center.
What to do next:
-
If you are scanning more than 10,000 hosts, update the Apache configuration file before using Tenable Security Center.