Tenable.sc API: Changelog

 

Version 5.17.x

Tenable.sc 5.17.x API includes updates for the following endpoints:

  • Industrial-Security

    • This entire API has been deleted and is no longer functioning. Customers must use Tenable.ot, the new Industrial Security replacement.

  • Analysis

    • The /analysis endpoint now supports a "startOffset" and "endOffset" for "vuln" type requests. This is similar to the /analysis/download endpoint.

  • Asset

    • Added a new filterName value, "uuid." Supported in asset::POST for assets of type "dynamic."

  • Credential

    • Added support for a new Credential type, Centrify, available for SSH and Windows.

    • Added "Privilege Escalation" option to the SSH Thycotic Secret Server credential.

    • Applied a correction to the POST request values for privilege escalation for SSH CyberArk Vault, to match the SC 5.17.0 REST API.

    • Applied a correction to the POST request values for privilege escalation type "dzdo" for auth types other than SSH Thycotic Secret Server, to match the SC 5.17.0 REST API.

    • Added support for a new Credential type, Sybase ASE., available for Databses.

    • Added support for a new Credential type, Apache Cassandra, available for Databses.

    • Expanded CSV import support to SQL Server, MySQL, and DB2 database type credentials. On POST for these database types when Source = 'Import' added a new field for providing the CSV file name. This new field is returned on GET and can be modified using PATCH.

    • Added Escalation Username field for SSH credentials with privilege escalation of type pbrun. On POST when Privilege Escalation = 'pbrun' added a new field for providing the Escalation Username. This new field is returned on GET and can be modified using PATCH.

  • Organization

  • Scan

    • Applied a change to the "type" field. Now defaulted to "policy" as we no longer support "plugin" type policies (used for Remediation scans, which now use type "policy" as well).

  • User

    • Applied a correction to the GET endpoint description. Creating a request as an Admin, with orgID as a parameter, will retrieve all the Users within the provided organization.

Version 5.16.x

Tenable.sc 5.16.x API includes updates for the following endpoints:

Version 5.15.x

Tenable.sc 5.15.x API includes updates for the following endpoints:

  • Status

    • Added "migrationStatus" to the response of /status::GET to indicate the status of the last migration that was run. Valid values are "Running" or "Stopped". A null value indicates that the migration was successful.

  • Scan Result

    • Added "agentScanID" to the response of the stop, resume, and pause endpoints to indicate the ID of the Agent Scan associated with the Scan Result.

Version 5.14.x

Tenable.sc 5.14.x API includes the following new functionality:

Tenable.sc 5.14.x API includes updates for the following endpoints:

  • Analysis

    • Clarified pre-existing behavior of results being inclusive of the startOffset parameter value and exclusive of the endOffset parameter value.

    • Duplicated "hostUniqueness" field to also return as original field name "uniqueness" to support integrations relying on field name.

  • Credential

    • Added new authType "Hashicorp" to "SSH", "Windows", and "Database" credentials.

    • Added new authType "Arcon" to "SSH" and "Windows" credentials.

  • Lumin

    • Updated the request parameters for the /lumin/assets::PATCH endpoint to allow for a schedule object to be provided for the start time for the daily synchronization of assets to Lumin.

    • Dynamic assets are now supported for syncing Lumin assets.

  • Configuration Section

    • For the endpoint /configSection/9::GET which returns Lumin configuration information, added a new element to the response object, "assetsSyncSchedule", which contains the schedule object for the daily synchronization of assets to IO/Lumin.

Version 5.13.x

Tenable.sc 5.13.x API includes the following new functionality:

  • Lumin

    • New endpoints /lumin/repositories::PATCH and /lumin/assets::PATCH to allow for enabling Lumin Synchronization.

Tenable.sc 5.13.x API includes updates for the following endpoints:

  • Scanner

    • Field "password" now supported for authType "certificate" in /scanner::GET, /scanner:POST, and /scanner:PATCH. The conventions will follow the password field for Nessus Scanners, and return SET when a certificate password exists.

  • Industrial Security

    • Field "password" now supported for authType "certificate" in /industrialSecurity::GET, /industrialSecurity::POST, and /industrialSecurity::PATCH. The conventions will follow the password field for Industrial Security Instances, and return SET when a certificate password exists.

  • Passive Scanner (NNM)

    • Field "password" now supported for authType "certificate" in /passivescanner::GET, /passivescanner::POST, and /passivescanner::PATCH. The conventions will follow the password field for Passive (NNM) Scanners, and return SET when a certificate password exists.

  • Configuration Section

    • /configSection::GET - Added Lumin Section for ID 9.

    • Added new configuration section: /configSection/9::GET.

    • Added new configuration section: /configSection/9::PATCH.

  • Repository

    • Added fields "luminFields" and "ipOverlaps" to /repository::GET.

    • Added field "luminFields" to /repository/{id}::GET.

  • Asset

    • Added admin access to /asset::GET with a limited field subset including organization and luminFields.

    • Added admin access to /asset/{id}::GET with a limited field subset including organization and luminFields.

  • Credential

    • Added fields "source" and "csv_file" to /credential::POST, /credential::PATCH, and /credential::GET.

  • Configuration

    • Added new string params “ioAccessKey” and "ioSecretKey" to /config/64::GET.

    • Added new string params “ioAccessKey” and "ioSecretKey" to /config/64::PATCH.

  • Analysis

    • Modified attribute "uniqueness" to "hostUniqueness" in the response for certain vuln types.

The following functionality was removed from Tenable.sc:

  • System

    • Removed unsupported / undocumented endpoints: /system/fips::GET and /system/fips::POST.

Version 5.12.x

Tenable.sc 5.12.x API includes the following new functionality:

  • System

    • Added new field "SerializationDisabled" and missing field "telemetryEnabled" to /system::GET response.

    • Added debug option "dbIOErrors" to /system/debug::GET.

    • Added fields "touchDebuggingEnabled" and "migrationFailure" to /system/diagnostic::GET.

  • Scanner

    • Created endpoint /scanner/{id}/bug-report.

    • Created endpoint /scanner/{id}/health.

  • Solutions (provisional)

    • Created endpoint /solutions::POST.

    • Created endpoint /solutions/{pluginID}::POST.

    • Created endpoint /solutions/{pluginID}/vuln::POST.

    • Created endpoint /solutions/{pluginID}/asset::POST.

  • AuditFile

    • filename and originalFilename now required for auditFileTemplate 'id' is '-1' instead of auditFileTemplate 'id' is not '-1' for /AuditFile::POST.

  • Report

    • Removed non-existent endpoint /report/{id}/pause::POST.

  • MDM

    • Added new MDM types Blackberry UEM and Microsoft Intune to /mdm::GET.

The following functionality was removed from Tenable.sc:

  • IP Information

    • The /ipInfo::GET endpoint was deleted and the IP Information page was removed from API documentation. This functionality is now available through the /deviceInfo::GET endpoint.

  • Repository

  • Report

    • The /report/{id}/publish::POST endpoint was deleted.

Version 5.11.x

Tenable.sc 5.11.x API includes the following new functionality:

  • Group

    • Added new field "createDefaultObjects" in /group::GET and /group/<id>::GET

    • Added new parameter "createDefaultObjects" in /group::POST and /group/<id>::PATCH

  • Credential

    • Added new field “beyondtrust_api_user” in /credential::POST and /credential/<id>::PATCH for beyondTrust credentials of type "ssh" and "windows"

    • Added new parameter "beyondtrust_api_user” in /credential::GET and /credential/<id>::GET in the typeFields for credentials of type "ssh" and "windows"

  • Scan Result

    • Added new optional filter "optimizeCompletedScans" to /scanResult::GET to skip retrieval of progress fields (completedIPs, completedChecks, totalChecks) for scans that are no longer in progress to optimize speed.

The following functionality was deprecated (marked for future removal):

  • User

    • Marked fields "importReports", "importARCs", "importDashboards", "dashboardTemplate", and "arcTemplate" in /user::POST. During the deprecation period, the default of these fields will be updated to the new "createDefaultObjects" group setting.

  • Organization Security Manager

    • Marked fields "importReports", "importARCs", "importDashboards", "dashboardTemplate", and "arcTemplate" in /user::POST. During the deprecation period, the default of these fields will be updated to the new "createDefaultObjects" group setting

Version 5.10.x

Tenable.sc 5.10 API includes the following changes:

  • System

    • Added new endpoint /system/debug::GET

    • Added new endpoint /system/debug::PATCH

  • Plugin

    • Added new field “vprContext” to /plugin::GET

    • Added new field “vprContext” to /plugin/{id}::GET

  • Plugin Family

    • Added new field “vprContext” to /pluginFamily/{id}/plugins::GET

  • Scan

    • Added new field “enabled” to the schedule object inside /scan::POST

    • Added new field “enabled” to the schedule object inside /scan/{id}::PATCH

  • Scanner

    • Added fields “accessKey” and “secretKey” to /scanner::GET

    • Added fields “accessKey” and “secretKey” to /scanner/{id}::GET

    • Added fields “accessKey” and “secretKey” to /scanner/{id}::POST