Manage Scan Zones

Required Tenable Security Center User Role: Administrator

Add a Scan Zone

You can add a scan zone to a managed Tenable Security Center instance. For more information about scan zone options, see Scan Zones.

To add a scan zone to a managed Tenable Security Center instance:

  1. Log in to Tenable Security Center Director via the user interface.

  2. Click Scan Infrastructure > Scan Zones.

    The Scan Zones page appears.

  3. At the top of the table, click Add.

    The Add Scan Zone page appears.

  4. In the Tenable Security Center Instance drop-down, select the name of the managed Tenable Security Center instance where you want to add the scan zone.

    Tip: If you arrived at the Add Scan Zone page from the Scan Zones tab on a Tenable Security Center instance details page, you cannot modify the Tenable Security Center Instance option.

  5. In the Name box, type a name for the scan zone.

  6. In the Description box, type a description for the scan zone.

  7. In the Ranges box, type one or more IP addresses, CIDR addresses, or ranges to target with the scan zone.

  8. In the Scanners box, choose one or more scanners to associate with the scan zone.

  9. Click Submit.

    Tenable Security Center Director saves your configuration.

What to do next:

  • Configure scan zone-related organization settings, as described in Organizations.

View Your Scan Zones

For more information, see Scan Zones.

To view a list of configured scan zones:

  1. Log in to Tenable Security Center Director via the user interface.

  2. Click Scan InfrastructureScan Zones.

    The Scan Zones page appears.

  3. View details about each scan zone.
    • Name — The name of the scan zone.
    • Tenable Security Center Instance — The name of the Tenable Security Center instance where your scan zone is configured. For more information, see Tenable Security Center Director Deployments.

    • Status — The status of the scan zone.

      Scan Zone StatusDescription
      All Scanners Available

      All of the scanners in the scan zone are Working.

      x/y Scanners Available

      Only some of the scanners in the scan zone are Working.

      No Scanners AvailableNone of the scanners in the scan zone are Working.

      For information about Working and other scanner statuses, see Tenable Nessus Scanner Statuses.

    • Scanners — The number of Tenable Nessus scanners in the scan zone.
    • Last Modified — The date and time the scan zone was last modified.

Edit a Scan Zone

You can modify the options for scan zones on your managed Tenable Security Center instances. For more information about scan zone options, see Scan Zones.

To edit a scan zone on a manged Tenable Security Center instance:

  1. Log in to Tenable Security Center Director via the user interface.

  2. Click Scan Infrastructure > Scan Zones.

    The Scan Zones page appears.

  3. Right-click the row for the scan zone you want to edit.

    The actions menu appears.

    -or-

    Select the check box for the scan zone you want to edit.

    The available actions appear at the top of the table.

  4. Click Edit.

    The Edit Scan Zone page appears.

  5. Modify the following scan zone options. For more information, see Scan Zones

    • Name

    • Description

    • Ranges

    • Scanners

      Note: You cannot move a scan zone from one managed Tenable Security Center instance to another. To change the Tenable Security Center Instance, delete the scan zone and add a new scan zone with the same settings on a different Tenable Security Center instance.

  6. Click Submit.

    Tenable Security Center Director saves your configuration.

Delete a Scan Zone

You can delete a scan zone to permanently remove it from a managed Tenable Security Center instance. For more information, see Scan Zones.

Before you begin:

  • Confirm that no scans target the scan zone you want to delete. Tenable Security Center scans may fail if you delete an actively targeted scan zone.

To delete a scan zone:

  1. Log in to Tenable Security Center Director via the user interface.

  2. Click Scan Infrastructure > Scan Zones.

    The Scan Zones page appears.

  3. Select the scan zone you want to delete:

    • To delete a single scan zone:

      1. In the table, right-click the row for the scan zone you want to delete.

        The actions menu appears.

      2. Click Delete.

    • To delete multiple scan zones:

      1. In the table, select the check box for each scan zone you want to delete.

        The available actions appear at the top of the table.

      2. At the top of the table, click Delete.

    A confirmation window appears.

  4. Click Delete.

    5. Tenable Security Center Director deletes the scan zone from the managed Tenable Security Center instance.