Create a User-Defined Template (Unified Scan Configuration)

Required Scan Permissions: Can Configure

You can create user-defined scan templates to save and share custom scan settings with other Tenable.io users. For more information, see User-Defined Templates.

When you define a scan template, Tenable.io assigns you owner permissions for the scan template. You can share the scan template by assigning template permissions to other users, but only you can delete the scan template.

To create a user-defined scan template:

  1. In the upper-left corner, click the Menu button.

    The left navigation plane appears.

  2. In the left navigation plane, click Scans.

    The Scans page appears.

  3. Below Scans, choose to view Vulnerability Management Scans or Web Application Scans.

  4. In the upper-right corner of the page, click the addCreate Template button.

    The Select a Template page appears.

  5. Click the tile for the template you want to use as the base for your user-defined scan template.

    The Create a Template page appears.

  6. Do one of the following:

    • If you are creating a Vulnerability Management scan template, use the following procedure:

      1. Configure the scan template:

        Tab Action
        Settings

        Configure the settings available in the scan template.

        Credentials

        Specify credentials you want Tenable.io to use to perform a credentialed scan.

        Compliance/SCAP Specify the platforms you want to audit. Tenable, Inc. provides best practice audits for each platform. Additionally, you can upload a custom audit file.
        Plugins Select security checks by plugin family or individual plugin.
    • If you are creating a Web Application scan, use the following procedure:

      1. Configure the scan:

        Tab Action
        Settings Configure the settings available in the scan template. For more information, see Basic Settings in WAS Scans.
        Scope Specify the URLs and file types that you want to include in or exclude from your scan. For more information, see Scope Settings in WAS Scans.
        Assessment Specify how a scan identifies vulnerabilities and what vulnerabilities the scan identifies. This includes identifying malware, assessing the vulnerability of a system to brute force attacks, and the susceptibility of web applications. For more information, see Assessment Settings in WAS Scans.
        Advanced Specify advanced controls for scan efficiency.
        Credentials Specify credentials you want Tenable.io to use to perform a credentialed scan.
        Plugins Select security checks by plugin family or individual plugin.
  7. Click Save.

    Tenable.io saves the user-defined scan template and adds it to the list of scan templates on the Scan Templates page.