Target Groups

Note: This section describes the new Tenable.io interface. For information about the classic interface, see Target Groups (Classic Interface) . For information about navigating the new interface, see Navigate Tenable.io (New Interface).

A target group allows you to construct a list of scan targets by FQDN, CIDR notation, or IP address range. You can then specify which users in your organization can use the target group in scan configurations or filtering dashboards (including workbenches).

Note: System target groups and related functionality asset isolation are deprecated. To control scan permissions, use access groups instead.

You can still create and edit system target groups, as well as use system target groups in scan configurations and dashboard filters. However, Tenable recommends using user target groups instead.

If you grant a user permissions in a target group, the user can use the target group in the Target Groups option for scan configuration. However, you must also grant the user Can Scan permissions in an access group for the targets, or Tenable.io excludes the targets from the scan results. For more information, see Access Groups.

For more information on target groups, see the following topics: