Add a Tenable.io Scanner
The following feature is not supported in Tenable.io Federal Risk and Authorization Management Program (FedRAMP) environments. For more information, see the FedRAMP Product Offering.
Required User Role: Administrator
Tenable.sc supports the use of Tenable.io as a Nessus scanner within Tenable.sc. Tenable.io is an enterprise-class remote vulnerability scanning service you can use to audit internet-facing IP addresses for both network and web application vulnerabilities from the cloud. While Tenable.sc does not manage Tenable.io scanners (for example, Tenable.sc does not push plugins to the scanner), you can add Tenable.io scanners to Tenable.sc the same way you add internal, local, or remote Nessus scanners.
Before you begin:
-
Confirm that you have a valid, active Tenable.io subscription.
To add Tenable.io to Tenable.sc as a Nessus scanner:
-
Log in to Tenable.sc via the user interface.
-
Click Resources > Nessus Scanners.
-
At the top of the table, click Add.
-
Configure Nessus scanner options, as described in Nessus Scanners. You use Tenable.io-specific values for some settings.
Option
Value for a Tenable.io Configuration
Host
-
Commercial Tenable.io: cloud.tenable.com
-
Tenable.io FedRAMP: fedcloud.tenable.com
Port
443
Username
The username for an active Tenable.io user account.
Password
The password for an active Tenable.io user account.
Zones
The zones within Tenable.sc that use Tenable.io as a scanner.
-
-
Click Submit.
Note: Existing scan reports from Tenable.io are not automatically available in Tenable.sc. However, you can manually download and import them into Tenable.sc.
Note: By default, Tenable.io selects the corresponding regional scanner. For example, if you run a scan in the United States, Tenable.io selects the United States scanner. If you run a scan in Germany, Tenable.io selects the Germany scanner.
What to do next:
-
Configure a scan zone, repository, and active scan objects, as described in Active Scans.