Manage Scan Results

Required Tenable Security Center User Role: Administrator or organizational user with appropriate permissions. For more information, see User Roles.

Depending on the state of a scan result, you can perform different management actions (for example, you cannot download results for a scan with errors).

For more information, see Scan Results.

View Scan Results

Note: For each agent synchronization job result for a child node, Tenable Security Center imports a metadata record containing no vulnerability data. This metadata record appears as a second result on the Scan Results page. To prevent Tenable Security Center from importing the metadata file, configure and launch agent scans from Tenable Security Center, as described in Agent Scans.

To view a list of scan results:

  1. Log in to Tenable Security Center Director via the user interface.

  2. Click Scan Results (administrator users) or Scans > Scan Results (organizational users).

    The Scan Results page appears.

  3. View details about each scan result.

    • Name — The name for the scan associated with the result.

    • Availability — The status of the scan result. For more information, see Scan Result Statuses.

    • Tenable.sc Instance — The name of the Tenable Security Center instance where the scan was run.

    • Type — The type of scan that generated the scan result.

    • Scan Policy — The name of the scan policy that generated the scan result.

    • Scanned IPs — The number of IP addresses scanned.

    • Owner — The username for the user who added the scan.

    • Duration — The total time elapsed while running the scan.

    • Import Time — The date and time Tenable Security Center completed the scan result import.

    • Status — The status of the scan that generated the scan result. For more information, see Scan Status.

  4. To retrieve a scan result from a managed Tenable Security Center instance, see Retrieve Scan Results.

  5. To view a set of scan results:

    1. Right-click the row for the scan.

      The actions menu appears.

      -or-

      Select the check box for the scan.

      The available actions appear at the top of the table.

    2. Select Browse.

      The Vulnerability Summary analysis tool appears, populated with data from the scan.

  6. To view additional details for a scan result, see View Scan Result Details.

View Scan Result Details

You can view details for any scan result. For more information, see Scan Results.

To view scan result details:

  1. Log in to Tenable Security Center Director via the user interface.

  2. Click Scan Results (administrator users) or Scans > Scan Results (organizational users).

    The Scan Results page appears.

  3. Right-click the row for the scan result.

    The actions menu appears.

    -or-

    Select the check box for the scan result.

    The available actions appear at the top of the table.

  4. Click View.

    The View Scan Result page appears.

    Section

    Action

    General

    View general information for the scan result.

    • Name — The scan result name.

    • Type — The type of scan that generated the scan result.

    • Tenable Security Center Instance — The name of the Tenable Security Center instance where the scan was run.

    • Scan Policy — The name of the scan policy that generated the scan result.

    • Repository — The name of the repository associated with the scan policy that generated the scan result.

    • Scanned IPs / Total IPs — The number of IP addresses scanned compared to the total number of IP addresses targeted in the scan.

    • Status — The scan status. For more information, see Scan Status.

    • Scanner Summary — The name of the scan and how many IPs were scanned.

    • Start Time — The date and time Tenable Security Center started the scan.

    • Finish Time — The date and time Tenable Security Center completed the scan.

    • Status — The scan status. For more information, see Scan Status.

    • Duration — The total time elapsed while running the scan.

    • Import Start — The date and time Tenable Security Center started the scan result import.

    • Import Finish — The date and time Tenable Security Center completed the scan result import.

    • Import Status — The scan result import status. For more information, see Import Status.

    • Import Duration — The total time elapsed during scan result import.

    • Owner — The username for the user who added the scan.

    • Group — The group associated with the scan.

    • ID — The scan result ID.

Filter Scan Results

To filter scan results:

  1. Log in to Tenable Security Center Director via the user interface.

  2. Click Scan Results (administrator users) or Scans > Scan Results (organizational users).

    The Scan Results page appears.

  3. To filter the scan results:

    Click the filter icon. Filters allow you to view only desired scan results. Filter parameters include:

    • Access - filters by whether the scan is manageable or usable.

    • Group - filters by the groups that can access the scans.

    • Name - filters by the scan name.

    • Owner - filters by the scan owner.

    • Scan Policy - filters by the scan policy.

    • Status - filters by the scan status.

    • Time (Created) - filters by when the scan result was created.

    • Time (Finished) - filters by when the scan finished running.

    • Type - filters by the type of scan.

  4. To remove all filters:

    • Under the filter options, click Clear Filters.

      Note: To return to the default filter for your user account, refresh your browser window. The number in gray next to the filter displays how many filters are currently in use.

Retrieve a Scan Result From Managed Tenable Security Center

To retrieve a scan result from a managed Tenable Security Center instance:

  1. Log in to Tenable Security Center Director via the user interface.

  2. Click Scan Results (administrator users) or Scans > Scan Results (organizational users).

    The Scan Results page appears.

  3. Right-click the row for a Partial or Completed scan that is Not Synced.

    The actions menu appears.

    -or-

    Select the check box for a Partial or Completed scan that is Not Synced.

    The available actions appear at the top of the table.

  4. Click Retrieve.

    Tenable Security Center Director imports the scan result.

    Note: By default, Tenable Security Center Director retains scan results from managed Tenable Security Center instances for 30 days. For more information, see Data Expiration Settings.

Download Scan Results

To download scan results:

  1. Log in to Tenable Security Center Director via the user interface.

  2. Click Scan Results (administrator users) or Scans > Scan Results (organizational users).

    The Scan Results page appears.

  3. Right-click the row for the scan.

    The actions menu appears.

    -or-

    Select the check box for the scan.

    The available actions appear at the top of the table.

  4. Select Download.

    Tip: On a standard scan, you can download a Tenable Nessus results file. If the scan contains SCAP results, you can use an additional option to download the SCAP results.

Send a Copy of Scan Results

To send a copy of the scan results to users without access to Tenable Security Center Director:

  1. Log in to Tenable Security Center Director via the user interface.

  2. Click Scan Results (administrator users) or Scans > Scan Results (organizational users).

    The Scan Results page appears.

  3. Right-click the row for the scan.

    The actions menu appears.

    -or-

    Select the check box for the scan.

    The available actions appear at the top of the table.

  4. Select Email.

Generate a Report for Scan Results

To generate a report for the scan results based on a preconfigured report:

  1. Log in to Tenable Security Center Director via the user interface.

  2. Click Scan Results (administrator users) or Scans > Scan Results (organizational users).

    The Scan Results page appears.

  3. Right-click the row for the scan.

    The actions menu appears.

    -or-

    Select the check box for the scan.

    The available actions appear at the top of the table.

  4. Select Send to Report.

    Tenable Security Center Director sends the scan results to a report.

Pause or Resume a Scan

To pause or resume a running scan:

  1. Log in to Tenable Security Center Director via the user interface.

  2. Click Scan Results (administrator users) or Scans > Scan Results (organizational users).

    The Scan Results page appears.

  3. In the row for the scan, click the pause or play button, as described in Start or Pause a Scan.