Add a Tenable.io Scanner
The following feature is not supported in Tenable.io Federal Risk and Authorization Management Program (FedRAMP) environments. For more information, see the FedRAMP Product Offering.
Required User Role: Administrator
Tenable.sc supports the use of Tenable.io as a Nessus scanner within Tenable.sc. Tenable.io is an enterprise-class remote vulnerability scanning service you can use to audit internet-facing IP addresses for both network and web application vulnerabilities from the cloud. While Tenable.sc does not manage Tenable.io scanners (for example, Tenable.sc does not push plugins to the scanner), you can add Tenable.io scanners to Tenable.sc the same way you add internal, local, or remote Nessus scanners.
Before you begin:
- Confirm that you have a valid, active Tenable.io subscription.
To add Tenable.io to Tenable.sc as a Nessus scanner:
Log in to Tenable.sc via the user interface.
- Click Resources > Nessus Scanners.
Configure Nessus scanner options, as described in Nessus Scanners. You use Tenable.io-specific values for some settings.
Value for a Tenable.io Configuration
Commercial Tenable.io: cloud.tenable.com
Tenable.io FedRAMP: fedcloud.tenable.com
The username for an active Tenable.io user account.
The password for an active Tenable.io user account.
The zones within Tenable.sc that use Tenable.io as a scanner.
- Click Submit.
Note: Existing scan reports from Tenable.io are not automatically available in Tenable.sc. However, you can manually download and import them into Tenable.sc.
What to do next:
- Configure a scan zone, repository, and active scan objects, as described in Active Scans.