Tenable Security Center API: Organization User

This endpoint may only be used by administrators.

/organization/{orgID}/user

/organization/{orgUUID}/user

Methods
GET

Gets the list of Security Managers in an organization.

Fields Parameter
Expand

The fields parameter should be specified along the query string, and it takes the syntax

    ?fields=<field>,...

Allowed Fields

*id
*uuid
**firstname
**lastname
**username
canUse
canManage

Legend

* = always comes back
** = comes back if fields list not specified on GET all

Request User Parameters

None

Example Response
Expand
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
{
    "type" : "regular",
    "response" : [
        {
            "id" : "1",
            "username" : "head",
            "firstname" : "",
            "lastname" : "",
            "canUse" : true,
            "canManage" : true,
            "uuid": "48F26F3B-6A79-4153-96DB-4C63D1BF3D46"      },
        {
            "id" : "36",
            "username" : "GroupA",
            "firstname" : "",
            "lastname" : "",
            "canUse" : true,
            "canManage" : true,
            "uuid" : "85EE961D-6DB0-47F9-88C9-F210055E37CF"
        },
        {
            "id" : "37",
            "username" : "GroupB",
            "firstname" : "",
            "lastname" : "",
            "canUse" : true,
            "canManage" : true,
            "uuid" : "C4368F74-77F3-4723-8399-D3C88348D5D1"     }
    ],
    "error_code" : 0,
    "error_msg" : "",
    "warnings" : [],
    "timestamp" : 1454348491
}

/organization/{orgID}/user/{id}

/organization/{orgUUID}/user/{uuid}

Methods
GET

Gets a specific Security Manager.

Fields Parameter
Expand

The fields parameter should be specified along the query string, and it takes the syntax

    ?fields=<field>,...

Allowed Fields

*id
*uuid
**firstname
**lastname
**status
role
username
title
email
address
city
state
country
phone
fax
createdTime
modifiedTime
lastLogin
lastLoginIP
mustChangePassword
locked
failedLogins
authType
fingerprint
password
description
responsibleAsset
group
managedUsersGroups
managedObjectsGroups
orgName
canUse
canManage
preferences
ldap
ldapUsername
parent

Legend

* = always comes back
** = comes back if fields list not specified on GET all

redFont =  field is a JSON object e.g. "repository" :{ "id" : <id>, "name" : <name> } )

Request User Parameters

None

Example Response
Expand
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
{
    "type" : "regular",
    "response" : {
        "id" : "1",
        "status" : "0",
        "username" : "head",
        "ldapUsername" : "",
        "firstname" : "",
        "lastname" : "",
        "title" : "",
        "email" : "",
        "address" : "",
        "city" : "",
        "state" : "",
        "country" : "",
        "phone" : "",
        "fax" : "",
        "createdTime" : "1433519288",
        "modifiedTime" : "1453477493",
        "lastLogin" : "1454347644",
        "lastLoginIP" : "172.168.0.1",
        "mustChangePassword" : "false",
        "locked" : "false",
        "failedLogins" : "0",
        "authType" : "tns",
        "fingerprint" : null,
        "password" : "SET",
        "managedUsersGroups" : [
            {
                "id" : "-1",
                "name" : "All Groups",
                "description" : "All Groups"            }
        ],
        "managedObjectsGroups" : [
            {
                "id" : "-1",
                "name" : "All Groups",
                "description" : "All Groups"            }
        ],
        "preferences" : [
            {
                "name" : "timezone",
                "value" : "America/Nome",
                "tag" : "system"            }
        ],
        "canUse" : true,
        "canManage" : true,
        "role" : {
            "id" : "2",
            "name" : "Security Manager",
            "description" : "The Security Manager role has full access to all actions at the organization level. A Security Manager has the ability to create new groups and manage existing ones. A Security Manager can also define how users interact with other groups.\n\nThe ability to manage other users and their objects can be configured using group permissions on the Access tab of User add/edit. This includes viewing and stopping running scans and reports."     },
        "responsibleAsset" : {
            "id" : "19",
            "name" : "Windows Hosts",
            "description" : "The operating system detected has Windows installed.\n\nThis will be helpful for those getting started with Tenable.sc."       },
        "group" : {
            "id" : "0",
            "name" : "Full Access",
            "description" : "Full Access group"     },
        "ldap" : {
            "id" : "-1",
            "name" : "",
            "description" : ""      },
        "parent" : {
            "user" : {
                "id" : "1",
                "username" : "admin",
                "firstname" : "Jane",
                "lastname" : "Doe",
                "uuid" : "18C16668-F942-407D-B7E0-4EEB8523F429"         },
            "organization" : {
                "id" :"0",
                "name" : "Tenable.sc Administration",
                "description" : ""          }
        }
        "uuid" : "48F26F3B-6A79-4153-96DB-4C63D1BF3D46" },
    "error_code" : 0,
    "error_msg" : "",
    "warnings" : [],
    "timestamp" : 1454348768
}