Deploy an On-Premise Code Scanner
To deploy an on-premise code scanner in Tenable.cs:
-
In the left navigation bar, click Integrations.
The All Integrations page appears. -
Click On-premise code scanner.
The On-premise code scanner window appears. -
In the upper-right corner, click Download new.
The New On-premise code scanner window appears. -
In the Select deployment option section, select Ubuntu Linux.
-
Click Continue.
Tenable.cs displays the setup instructions for Ubuntu Linux.
Note: Depending on the number of enterprise repository servers, you can deploy multiple on-premise code scanners. You must have one code scanner per VM instance.
- Click Download.
Tenable.cs downloads the tenable-code-scanner-docker.zip file.
-
Extract the on-premise code scanner deployment zip file.
Note: Do not alter the extracted contents.
To configure your on-premise code scanner to work with a self-signed certificate, see Configure an On-Premise Code Scanner to Use Self-Signed Certificate.
What to do next:

Before you begin:
-
An Amazon Elastic Compute Cloud (Amazon EC2) or an Azure virtual machine in your cloud service account with the following minimum requirements:
-
A virtual machine with 4 GB RAM
-
20 GB Solid State Drive (SSD)
-
Ubuntu 16 or later
-
-
Install Docker Engine. For more information, see Install Docker Engine on Ubuntu.
Tenable recommends the following installation methods:
-
(Optional) Perform the post-installation steps for Docker. For more information, see Post-installation steps for Linux.
To deploy the on-premise code scanner on a virtual machine:
-
Copy the on-premise code scanner configuration files that you extracted in Deploy an On-Premise Code Scanner.
-
In the Tenable.cs command line interface (CLI), run the following commands:
Copycd <path_configuration_files_are_located>
chmod +x tenable-cs-code-scanner
sudo./tenable-cs-code-scannerThe following is a sample output after a deployment:
-
In a browser, type the URL displayed in the output to launch the On Premise Scanner Management Console.
The On Premise Scanner Management Console page opens.
Note: If you have the IP address for the on-premise code scanner host virtual machine, you can manually launch the On Premise Code Scanner Management Console using the following URL:https://<ip-address>/<dns-name>:9022
Where:ip-address is the IP address of host virtual machine.
dns-name is the domain name of the host virtual machine.
Tenable.cs deploys the on-premise code scanner.
To configure the on-premises scanner on your repositories, see the following topics: