Host

Tenable Security Center can use SNMPv3 credentials to scan remote systems that use an encrypted network management protocol (including network devices). Tenable Security Center uses these credentials to scan for patch auditing or compliance checks.

You can configure SNMPv3 options in scan policies, as described in The Authentication tab specifies authentication options during a scan. and Add a Scan Policy.

SNMPv3 Options

Option Description Default

Username

The username for the SNMPv3 account that Tenable Security Center uses to perform checks on the target system.

-

Port

(Required) The TCP port that SNMPv3 listens on for communications from Tenable Security Center.

161

Security Level

The security level for SNMP:

  • No authentication and no privacy
  • Authentication without privacy
  • Authentication and privacy
Authentication and privacy

Authentication algorithm

The algorithm the remove service supports: MD5, SHA1, or SHA2.

SHA1

Authentication password

The password associated with the Username.

-

Privacy algorithm

The encryption algorithm to use for SNMP traffic: AES-192, AES-256, or DES.

AES-192

Privacy password

A password used to protect encrypted SNMP communication.

-