Create an Accept Rule from Vulnerability Details

Required User Role: Administrator

Required Access Group Permissions: Can View

Accept rules can be created via the Settings page, or via the Vulnerability Details page.

To create an accept rule via the Vulnerability Details page:

  1. View the Vulnerability Details page.
  2. In the Assets Affected table, select the check box(es) next to the asset(s) for which you want to create an accept rule.
  3. In the upper-right corner, click the Actions button.

    The actions menu appears.

  4. in the actions menu, click Recast.

    The Recast Rule plane appears.

  5. In the Action section, select Accept.
  6. In the Vulnerability section, confirm the plugin ID populated by Tenable.io.
  7. In the Targets section, confirm the target populated by Tenable.io. For example:
    • If you select all assets on the Vulnerability Details page, the target is set to All.
    • If you select only some of the assets on the Vulnerability Details page, the target is set to Custom.
  8. (Optional) In the Expires box, set an expiration date for the rule.

    This action is only necessary if you want the rule to expire. By default, the rule applies indefinitely.

  9. (Optional) In the Comments box, type a description of the rule. The text you type in this box is only visible if the rule is modified and has no functional effect.
  10. (Optional) To report the vulnerability as a false positive:
    1. Enable the Report as false positive toggle.

      A Message To Tenable box appears.

    2. In the Message to Tenable box, type a description of the false positive to send to Tenable.
  11. Click Save.

    Tenable.io starts applying the rule to the appropriate vulnerabilities. This process may take some time, depending on the system load and the number of matching vulnerabilities. The affected vulnerability is hidden on your dashboards.

    Note: To view vulnerabilities hidden from your dashboards, use the Recast & Accept filter.