Keys Settings

Keys allow administrator users to use key-based authentication with a remote Tenable Security Center. This also removes the need for Tenable Security Center administrators to know the administrator login or password of the remote system.

Tenable Security Center uses ED25519 keys to authenticate to other Tenable Security Center instances.

Note: The ED25519 public key from the local Tenable Security Center must be added to the Keys section of the Tenable Security Center from which you wish to retrieve a repository. If the keys are not added properly, the remote repository add process prompts for the root username and password of the remote host to perform a key exchange before the repository add/sync occurs.

For information about adding, downloading, and deleting keys, see Manage Keys.

Note: Tenable Security Center only supports keys that are FIPS-140-2 compliant:

RSA: Supported for key lengths from 1024 to 16384 bits, often used for signature verification and key encryption.
DSA: Supported for signature verification, with common lengths being 2048 or 3072 bits.
EC DH: Supported for public key agreement on all NIST-defined P curves.