Asset Repositories
Asset repositories can store data from Tenable Nessus, Tenable Agent, and Tenable OT Security scans, as well as IPv4 and IPv6 data from Tenable Network Monitor scans.
Tenable Security Center assigns UUIDs to assets to uniquely identify vulnerability data in asset repositories, since not all assets have IP addresses or Tenable UUIDs.
-
IP data: IPv4 and IPv6 data collected from active and passive scans. These assets are identified by network address.
-
Tenable Agent data: Vulnerability data collected from Tenable Agents. These assets are identified by agent ID, which is essential for accurately tracking assets that may frequently change IP addresses (e.g., laptops or mobile devices).
-
Tenable OT Security data: Data from Tenable OT Security. Since not all operational technology assets have traditional IP addresses, Tenable Security Center uses the OT Security UUID to identify these assets and their associated data. For more information about viewing OT Security data in Tenable Security Center, see OT Security Instances.
For more information, see Add a Repository.
Asset Repository Options
|
Option |
Description |
|---|---|
|
General |
|
|
Name |
The repository name. |
|
Description |
(Optional) A description for the repository. |
|
Data |
|
|
IP Ranges |
Specifies the IP address range of vulnerability data you want to store in the repository. Type the range as a comma-separated list of IP addresses, IP address ranges, and/or CIDR blocks. |
|
Access |
|
|
Organizations |
Specifies which organizations have access to the vulnerability data stored in the repository. If groups are configured for the organization, Tenable Security Center prompts you to grant or deny access to all of the groups in the organization. For more granular control, grant access within the settings for that group. |
|
Advanced Settings |
|
|
Generate Trend Data |
When enabled, Tenable Security Center generates trend data by taking periodic snapshots of the cumulative database. Trend data is displayed in some Tenable Security Center tools (e.g., trending line charts and trending area charts). Tenable Security Center also produces differential data (snapshot comparison data), which improves performance when displaying trend data in Tenable Security Center tools. Tip: Disable this option to reduce your disk space usage. |
|
Days Trending |
Specifies the number of days of cumulative vulnerability data that you want Tenable Security Center to display in dashboard and report vulnerability trending displays. |
|
Enable Full Text Search |
When enabled, Tenable Security Center includes vulnerability text in periodic snapshots of .nessus data for vulnerability trending purposes. For more information about the Vulnerability Text filter component, see Vulnerability Analysis Filter Components. |
|
Vulnerability Data Lifetime (Data Expiration Settings) |
|
|
Active |
The number of days you want Tenable Security Center to retain agent scan vulnerability data stored in agent repositories. The default value of this option is 365 days. |
|
Passive |
The number of days you want Tenable Security Center to retain Tenable Network Monitor vulnerability data stored in IP repositories. The default value of this option is 7 days. |
|
Compliance |
The number of days you want Tenable Security Center to retain audit compliance data stored in repositories. The default value of this option is 365 days. |
|
Mitigated |
The number of days you want Tenable Security Center to retain mitigated vulnerability data. The default value of this option is 365 days. |