Download the Container Security Scanner

The following feature is not supported in Tenable.io Federal Risk and Authorization Management Program (FedRAMP) environments. For more information, see the FedRAMP Product Offering.

Required Additional License: Container Security

Required Tenable.io Vulnerability Management User Role: Scan Operator, Standard, Scan Manager, or Administrator

Download the CS Scanner Docker image to the machine where you want to configure and run the CS Scanner.

Before you begin:

• Confirm your machine meets the system requirements, as described in CS Scanner System Requirements.

To download the CS Scanner:

1. In the Connectors section of the Container Security dashboard, click Create.

   The Select a Connector plane appears.

2. Under CONTAINER SECURITY, click CS Scanner.

   The CS Scanner plane appears with login credentials.

3. Copy or take a screenshot of the credentials to use later in the download process.

4. In the command-line interface (CLI) on the machine where you want to download the CS Scanner, run the following command:

   Copy

   docker login tenableio-docker-consec-local.jfrog.io

5. Press Enter.

   The CLI prompts you to provide a username and password.

6. Update the fields using the credentials provided on the CS Scanner plane.
   

7. Press Enter.

   Tenable.io logs you in to the CS Scanner.

8. Type the following to pull the latest version of the CS Scanner image:

   Copy

   docker pull tenableio-docker-consec-local.jfrog.io/cs-scanner:latest

9. Press Enter.

What to do next:

• Configure and run the CS Scanner, as described in Configure and Run the Container Security Scanner.