Host Asset Details

When you View Asset Details, the Asset Details page varies by asset type. For host assets, it includes asset information, a list of associated findings, the AES, and the ACR.

The Asset Details page for host assets contains the following sections.

Note: Tenable Vulnerability Management hides empty sections, so these may not appear in some cases.

Section Description
Header

The asset header; based on the presence of certain attributes in the following logical order:

  1. Agent name
  2. NetBIOS name
  3. Local hostname
  4. Fully Qualified Domain Name (FQDN)
  5. IPv4 address
  6. IPv6 address
Asset Information

Information about the host asset, including:

  • Asset ID — The UUID of the asset.

  • Licensed — Specifies whether the asset is licensed.

  • System Type — The system types as reported by Plugin ID 54615. For more information, see Tenable Plugins.

  • Operating System — The operating system that a scan identified as installed on the asset.

  • IPv4 Address — An IPv4 address for the asset.

  • IPv6 Address — An IPv6 address for the asset.

  • MAC Address — The MAC address for the asset.

  • Network — The name of the network object associated with scanners that identified the asset. The default network name is Default. For more information about networks, see Networks.

  • Agent Name — The name of the Tenable Nessus Agent that scanned and identified the asset.

  • DNS (FQDN) — The fully qualified domain name of the asset host.

  • SSH Fingerprint — The SSH key fingerprints that scans have associated with the asset record.

  • Tenable ID — A UUID created for new assets during credentialed scans or agent scans. If an asset is found not to be unique, this UUID is not created and an existing one is reused.

  • Public — Specifies whether the asset is available on a public network. A public asset is within the public IP space and identified by the is_public attribute in the Tenable Vulnerability Managementquery namespace.

  • BIOS ID — The asset's BIOS UUID.

  • ServiceNow Sys ID — Where applicable, the unique record identifier of the asset in ServiceNow.

  • Network Device Serial ID — The unique identifier of the asset as assigned by the manufacturer. This property is only available for network devices.

  • Custom Attributes — Custom attributes added to the asset. For more information, see the Tenable Developer Portal.

Findings

Click the Findings tab to view all findings associated with the asset:

  • In the drop-down, switch between Vulnerability and Host Audit findings.

  • Click the Show All Vulnerabilities toggle to hide Fixed and Accepted vulnerabilities or host audits.

  • Click Open in Findings to view all findings on the Findings workbench.

  • In a finding row, click to show a menu where you can view findings details, export a finding, or launch a remediation scan.

  • Show or hide columns, as described in Customize Explore Tables.

Open Ports

Click the Open Ports tab to view open ports on the asset:

  • Open Ports – Specifies open ports on the asset.

  • Protocol – Specifies the protocol with which information is transported to the open port, for example, TCP or UDP.

  • First Detected Open – The date and time the port was first detected as open.

  • Last Detected Open – The date and time the port was last detected as open.

  • Service – The service running on the open port, such as HTTPS, SSH, or FTP. To learn more about possible services, see Service Name and Transport Protocol on the Internet Assigned Numbers Authority website.

Activity

Click the Activity tab to view activity for the asset:

  • Event – Specifies all asset events logged by Tenable Vulnerability Management, for example, Asset Discovered.

  • Date – Specifies the event date.

  • Source – Specifies the event source, for example, Nessus Scan.

Mitigations

Click the Mitigations tab to view information about any mitigation software that a scan identified on the asset.

Asset Exposure Score (Requires Tenable Lumin license) An icon indicating the Asset Exposure Score (AES) calculated for the asset.
Asset Criticality Rating (Requires Tenable Lumin license) An icon indicating the asset's Asset Criticality Rating.
Cloud Resource Information

Cloud resource information including: 

  • AWS Availability Zone — The AWS EC2 AMI ID of the asset. For more information, see the Tenable Vulnerability Management AWS documentation.

  • AWS EC2 AMI ID — The AWS EC2 instance ID of the asset.

  • AWS EC2 Instance ID — The AWS EC2 instance ID of the asset.

  • AWS Security Group — The AWS security group of the asset.

  • AWS Instance State — The AWS instance state of the asset.

  • AWS instance Type — The AWS instance type of the asset.

  • AWS EC2 Name —The AWS EC2 name of the asset.

  • AWS EC2 Product Code — The AWS EC2 product code of the asset.

  • AWS Owner ID — The AWS owner ID of the asset.

  • AWS Region — The AWS region of the asset.

  • AWS Subnet ID — The AWS subnet ID of the asset.

  • AWS VPC ID — The AWS VPC ID of the asset.

  • Google Cloud Instance ID — The Google cloud instance ID of the asset. For more information, see the Tenable Vulnerability ManagementGoogle Cloud Platform documentation.

  • Google Cloud Project ID —The Google cloud project ID of the asset.

  • Google Cloud Zone — The Google cloud zone of the asset.

Tags

Tags applied to the asset. To add a tag, click the Add button. To remove a tag, click the button on the tag label. For more information, see Tags.

Asset Scan Information

Information about the asset's scan history, including:

  • First Seen — The time and date when a scan first identified the asset.

  • Last Seen — The date and time of the scan that most recently identified the asset.

  • Last Authenticated Scan — The date and time of the last authenticated scan run against the asset. An authenticated scan that only uses discovery plugins updates the Last Authenticated Scan field, but not the Last Licensed Scan field.

  • Last Authentication Attempt — The last time that Tenable Nessus attempted to sign in, either with SSH on Unix-based systems or SMB on Windows.

  • Last Authentication Status — The last authentication attempt by Tenable Nessus was successful.

  • Last Successful Authentication — The last time that Tenable Nessus authenticated successfully.

  • Last Licensed Scan — The date and time of the last scan in which the asset was considered "licensed" and counted towards Tenable's license limit. A licensed scan uses non-discovery plugins and can identify vulnerabilities. Unauthenticated scans that run non-discovery plugins update the Last Licensed Scan field, but not the Last Authenticated Scan field. For more information on how licenses work, see Tenable Vulnerability Management Licenses.

  • Source — The source of the scan that identified the asset.

  • Last Scan Target — The IP address or fully qualified domain name (FQDN) of the asset targeted in the last scan.

Actions

In the upper-right corner, click the Actions button to view a drop-down where you can: