Add a Credential to a Scan

Required Tenable.io Vulnerability Management User Role: Basic, Scan Operator, Standard, Scan Manager, or Administrator

Required Scan Permissions: Can Control

In the event that a scan contains multiple instances of a single type of credential (SSH logins, SMB logins, etc.), Tenable.io attempts to use them on a valid target in the order that they were added to the scan configuration.

Note: The first credential that allows successful login is used to perform credentialed checks on the target. After a credential provides successful login, Tenable.io does not try any of the other credentials in the list, even if one of the later credentials has a greater degree of access or privileges.

To add a credential to a scan:

  1. Create or edit a scan.
  2. In the left navigation menu, click Credentials.

    The Credentials page appears. This page contains a table of credentials configured for the scan.

  3. Next to Add Credentials, click the Create button.

    The Select Credential Type plane appears.

  4. Do one of the following:
  5. Click Save to save your credential changes.

    Tenable.io closes the settings plane and adds the credential to the credentials table for the scan.

    Note: Upon saving, Tenable.io automatically orders the credentials by ascending ID and groups the credentials by type.

  6. Do one of the following:

    • If you want to save without launching the scan, click Save.

      Tenable.io saves the scan.

    • If you want to save and launch the scan immediately, click Save & Launch.

      Note: If you scheduled the scan to run at a later time, the Save & Launch option is not available.

      Tenable.io saves and launches the scan.