License Count

Tenable recommends that you periodically review your scanned assets and clear old or unwanted assets from Tenable Security Center.

To do this, set the vulnerability lifetime for your repositories. This feature automatically ages out assets after a number of days that you specify. For more information, see the Vulnerability Data Lifetime settings for your local repositories and Data Expiration Configuration settings.

Note: Tenable Security Center clears the assets after the nightly cleanup process runs.

In addition to using the data lifetime and expiration options to remove vulnerabilities in the repositories, you can enable the Immediately remove vulnerabilities from scanned hosts that do not reply option in your Active Scan settings to clear stale assets or unresponsive hosts.

Depending on your organization’s policy and age-out configuration, you can perform this activity quarterly. This practice helps you identify accidental scanning activities when you detect a sudden spike in license count usage.