Add a Tenable.io Scanner

The following feature is not supported in Tenable.io Federal Risk and Authorization Management Program (FedRAMP) environments. For more information, see the FedRAMP Product Offering.

Required User Role: Administrator

Tenable.sc supports the use of Tenable.io as a Nessus scanner within Tenable.sc. Tenable.io is an enterprise-class remote vulnerability scanning service you can use to audit internet-facing IP addresses for both network and web application vulnerabilities from the cloud. While Tenable.sc does not manage Tenable.io scanners (for example, Tenable.sc does not push plugins to the scanner), you can add Tenable.io scanners to Tenable.sc the same way you add internal, local, or remote Nessus scanners.

Before you begin:

  • Confirm that you have a valid, active Tenable.io subscription.

To add Tenable.io to Tenable.sc as a Nessus scanner:

  1. Log in to Tenable.sc via the user interface.

  2. Click Resources > Nessus Scanners.
  3. Click Add.

  4. Configure Nessus scanner options, as described in Nessus Scanners. You use Tenable.io-specific values for some settings.

    Option

    Value for a Tenable.io Configuration

    Host

    • Commercial Tenable.io: cloud.tenable.com

    • Tenable.io FedRAMP: fedcloud.tenable.com

    Port

    443

    Username

    The username for an active Tenable.io user account.

    Password

    The password for an active Tenable.io user account.

    Zones

    The zones within Tenable.sc that use Tenable.io as a scanner.
  5. Click Submit.

Note: Existing scan reports from Tenable.io are not automatically available in Tenable.sc. However, you can manually download and import them into Tenable.sc.

Note: By default, Tenable.io selects the corresponding regional scanner. For example, if you run a scan in the United States, Tenable.io selects the United States scanner. If you run a scan in Germany, Tenable.io selects the Germany scanner.

What to do next:

  • Configure a scan zone, repository, and active scan objects, as described in Active Scans.