Tenable.sc API: Changelog

 

Version 5.14.x

Tenable.sc 5.14.x API includes the following new functionality:

Tenable.sc 5.14.x API includes updates for the following endpoints:

  • Analysis

    • Clarified pre-existing behavior of results being inclusive of the startOffset parameter value and exclusive of the endOffset parameter value.

    • Duplicated "hostUniqueness" field to also return as original field name "uniqueness" to support integrations relying on field name.

  • Credential

    • Added new authType "Hashicorp" to "SSH", "Windows", and "Database" credentials.

    • Added new authType "Arcon" to "SSH" and "Windows" credentials.

  • Lumin

    • Updated the request parameters for the /lumin/assets::PATCH endpoint to allow for a schedule object to be provided for the start time for the daily synchronization of assets to Lumin.

    • Dynamic assets are now supported for syncing Lumin assets.

  • Configuration Section

    • For the endpoint /configSection/9::GET which returns Lumin configuration information, added a new element to the response object, "assetsSyncSchedule", which contains the schedule object for the daily synchronization of assets to IO/Lumin.

Version 5.13.x

Tenable.sc 5.13.x API includes the following new functionality:

  • Lumin

    • New endpoints /lumin/repositories::PATCH and /lumin/assets::PATCH to allow for enabling Lumin Synchronization.

Tenable.sc 5.13.x API includes updates for the following endpoints:

  • Scanner

    • Field "password" now supported for authType "certificate" in /scanner::GET, /scanner:POST, and /scanner:PATCH. The conventions will follow the password field for Nessus Scanners, and return SET when a certificate password exists.

  • Industrial Security

    • Field "password" now supported for authType "certificate" in /industrialSecurity::GET, /industrialSecurity::POST, and /industrialSecurity::PATCH. The conventions will follow the password field for Industrial Security Instances, and return SET when a certificate password exists.

  • Passive Scanner (NNM)

    • Field "password" now supported for authType "certificate" in /passivescanner::GET, /passivescanner::POST, and /passivescanner::PATCH. The conventions will follow the password field for Passive (NNM) Scanners, and return SET when a certificate password exists.

  • Configuration Section

    • /configSection::GET - Added Lumin Section for ID 9.

    • Added new configuration section: /configSection/9::GET.

    • Added new configuration section: /configSection/9::PATCH.

  • Repository

    • Added fields "luminFields" and "ipOverlaps" to /repository::GET.

    • Added field "luminFields" to /repository/{id}::GET.

  • Asset

    • Added admin access to /asset::GET with a limited field subset including organization and luminFields.

    • Added admin access to /asset/{id}::GET with a limited field subset including organization and luminFields.

  • Credential

    • Added fields "source" and "csv_file" to /credential::POST, /credential::PATCH, and /credential::GET.

  • Configuration

    • Added new string params “ioAccessKey” and "ioSecretKey" to /config/64::GET.

    • Added new string params “ioAccessKey” and "ioSecretKey" to /config/64::PATCH.

  • Analysis

    • Modified attribute "uniqueness" to "hostUniqueness" in the response for certain vuln types.

The following functionality was removed from Tenable.sc:

  • System

    • Removed unsupported / undocumented endpoints: /system/fips::GET and /system/fips::POST.

Version 5.12.x

Tenable.sc 5.12.x API includes the following new functionality:

  • System

    • Added new field "SerializationDisabled" and missing field "telemetryEnabled" to /system::GET response.

    • Added debug option "dbIOErrors" to /system/debug::GET.

    • Added fields "touchDebuggingEnabled" and "migrationFailure" to /system/diagnostic::GET.

  • Scanner

    • Created endpoint /scanner/{id}/bug-report.

    • Created endpoint /scanner/{id}/health.

  • Solutions (provisional)

    • Created endpoint /solutions::POST.

    • Created endpoint /solutions/{pluginID}::POST.

    • Created endpoint /solutions/{pluginID}/vuln::POST.

    • Created endpoint /solutions/{pluginID}/asset::POST.

  • AuditFile

    • filename and originalFilename now required for auditFileTemplate 'id' is '-1' instead of auditFileTemplate 'id' is not '-1' for /AuditFile::POST.

  • Report

    • Removed non-existent endpoint /report/{id}/pause::POST.

  • MDM

    • Added new MDM types Blackberry UEM and Microsoft Intune to /mdm::GET.

The following functionality was removed from Tenable.sc:

  • IP Information

    • The /ipInfo::GET endpoint was deleted and the IP Information page was removed from API documentation. This functionality is now available through the /deviceInfo::GET endpoint.

  • Repository

  • Report

    • The /report/{id}/publish::POST endpoint was deleted.

Version 5.11.x

Tenable.sc 5.11.x API includes the following new functionality:

  • Group

    • Added new field "createDefaultObjects" in /group::GET and /group/<id>::GET

    • Added new parameter "createDefaultObjects" in /group::POST and /group/<id>::PATCH

  • Credential

    • Added new field “beyondtrust_api_user” in /credential::POST and /credential/<id>::PATCH for beyondTrust credentials of type "ssh" and "windows"

    • Added new parameter "beyondtrust_api_user” in /credential::GET and /credential/<id>::GET in the typeFields for credentials of type "ssh" and "windows"

  • Scan Result

    • Added new optional filter "optimizeCompletedScans" to /scanResult::GET to skip retrieval of progress fields (completedIPs, completedChecks, totalChecks) for scans that are no longer in progress to optimize speed.

The following functionality was deprecated (marked for future removal):

  • User

    • Marked fields "importReports", "importARCs", "importDashboards", "dashboardTemplate", and "arcTemplate" in /user::POST. During the deprecation period, the default of these fields will be updated to the new "createDefaultObjects" group setting.

  • Organization Security Manager

    • Marked fields "importReports", "importARCs", "importDashboards", "dashboardTemplate", and "arcTemplate" in /user::POST. During the deprecation period, the default of these fields will be updated to the new "createDefaultObjects" group setting

Version 5.10.x

Tenable.sc 5.10 API includes the following changes:

  • System

    • Added new endpoint /system/debug::GET

    • Added new endpoint /system/debug::PATCH

  • Plugin

    • Added new field “vprContext” to /plugin::GET

    • Added new field “vprContext” to /plugin/{id}::GET

  • Plugin Family

    • Added new field “vprContext” to /pluginFamily/{id}/plugins::GET

  • Scan

    • Added new field “enabled” to the schedule object inside /scan::POST

    • Added new field “enabled” to the schedule object inside /scan/{id}::PATCH

  • Scanner

    • Added fields “accessKey” and “secretKey” to /scanner::GET

    • Added fields “accessKey” and “secretKey” to /scanner/{id}::GET

    • Added fields “accessKey” and “secretKey” to /scanner/{id}::POST