Asset Columns
On the Assets page, you can view the assets in your environment broken down into categories including hosts, web applications, external attack surface, and network devices.
The Assets page has the following columns, which you can show or hide as described in Use Tables. Not all columns appear for all asset types.
| Column | Description |
|---|---|
| ACR |
(Requires Tenable One or Tenable Lumin license) The Tenable-defined Asset Criticality Rating (ACR) as an integer from 1 to 10. |
| ACR V3 (Beta) |
(Requires Tenable One or Tenable Lumin license) The Tenable-defined Asset-Criticality Rating using a new algorithm based on asset profile, which assigns assets to classes by business and device function. This metric rates the importance of an asset to your organization from 1 to 10, with higher numbers for more critical assets. For more information, see Scoring and Asset Criticality Rating. |
| AES |
(Requires Tenable One or Tenable Lumin license) The Tenable-defined Asset Exposure Score as an integer from 0 to 1000. |
| AES V3 (Beta) |
(Requires Tenable One or Tenable Lumin license) The Tenable-defined Asset Exposure Score using a new algorithm. This metric weighs an asset's Vulnerability Priority Rating (VPR) and Asset Criticality Rating (ACR) and then assigns a number from 1 to 1000, with higher numbers for more exposed assets. For more information, see Scoring (Beta). |
| Agent Name |
The name of the Tenable Nessus agent that scanned and identified the asset. |
| Asset ID |
The UUID of the asset. This value is unique to Tenable Vulnerability Management. |
| AWS Availability Zone |
The name of the Availability Zone where AWS hosts the virtual machine instance. For more information, see Regions and Zones in the AWS documentation. |
| AWS EC2 AMI ID |
The unique identifier of the Linux AMI image in Amazon Elastic Compute Cloud (Amazon EC2). For more information, see the Amazon Elastic Compute Cloud Documentation. |
| AWS EC2 Instance ID |
The unique identifier of the Linux instance in Amazon EC2. For more information, see the Amazon Elastic Compute Cloud Documentation. |
| AWS EC2 Name |
The name of the virtual machine instance in Amazon EC2. |
| AWS EC2 Product Code |
The product code associated with the AMI used to launch the virtual machine instance in Amazon EC2. |
| AWS Instance State |
The state of the virtual machine instance in AWS at the time of the scan. For possible values, see InstanceState in the Amazon Elastic Compute Cloud Documentation. |
| AWS Instance Type |
The type of virtual machine instance in Amazon EC2. Amazon EC2 instance types dictate the specifications of the instance (for example, how much RAM it has). For a list of possible values, see Amazon EC2 Instance Types in the AWS documentation. |
| AWS Owner ID |
A UUID for the Amazon AWS account that created the virtual machine instance. This attribute only appears for Amazon EC2 instances. For more information, see View AWS Account Identifiers in the AWS documentation |
| AWS Region |
The region where AWS hosts the virtual machine instance, for example, us-east-1. |
| AWS Security Group |
The AWS security group (SG) associated with the Amazon EC2 instance. |
| AWS Subnet ID |
The unique identifier of the AWS subnet where the virtual machine instance was running at the time of the scan. |
| AWS VPC ID |
The unique identifier of the public cloud that hosts the AWS virtual machine instance. For more information, see the Amazon Virtual Private Cloud Documentation. |
| Azure Resource ID | Where applicable, the Azure resource ID of the asset, as described in the Tenable Vulnerability ManagementMicrosoft Azure documentation. |
| Azure VM ID | Where applicable, the Azure VM ID of the asset, as described in the Tenable Vulnerability Management Microsoft Azure documentation. |
| Cloud Provider | Indicates whether the asset is from AWS, Azure, or GCP. |
| Created Date |
The date and time when Tenable Vulnerability Management created the asset record. |
| DNS (FQDN) |
The fully qualified domain name of the asset host. When processing fully qualified domain names (FQDNs) for host assets, Tenable Vulnerability Management normalizes all FQDNs to lowercase and then merges any duplicates. |
| First Seen |
The date and time when a scan first identified the asset. |
| Google Cloud Instance ID | Where applicable, the Google cloud instance ID of the asset, as described in the Tenable Vulnerability Management Google Cloud Platform documentation. |
| Google Cloud Project ID | Where applicable, the Google cloud project ID of the asset, as described in the Tenable Vulnerability Management Google Cloud Platform documentation. |
| Google Cloud Zone | Where applicable, the Google cloud zone of the asset, as described in the Tenable Vulnerability Management Google Cloud Platform documentation. |
| Has Plugin Results |
Specifies whether the asset has plugin results associated with it. |
| IPV4 Address |
The IPv4 address for the affected asset. |
| IPV6 Address |
The IPv6 address for the affected asset. |
| Last Authenticated Scan |
The date and time of the last authenticated scan run against the asset. An authenticated scan that only uses discovery plugins updates the Last Authenticated Scan field, but not the Last Licensed Scan field. |
| Last Licensed Scan |
The date and time of the last scan in which the asset was considered "licensed" and counted towards Tenable's license limit. A licensed scan uses non-discovery plugins and can identify vulnerabilities. Unauthenticated scans that run non-discovery plugins update the Last Licensed Scan field, but not the Last Authenticated Scan field. For more information on how licenses work, see Tenable Vulnerability Management Licenses. |
| Last Seen |
The date when a scan last found the vulnerability on an asset. |
| Licensed |
Indicates if the asset is licensed within Tenable Vulnerability Management. For more information, see Tenable Vulnerability Management Licenses. |
| MAC Address |
A MAC address that a scan has associated with the asset record. |
| Name |
The asset identifier, assigned based on the availability of the following attributes in order: Agent name, NetBIOS name, Local hostname, Fully Qualified Domain Name (FQDN), IPv4 address, and IPv6 address. |
| NetBIOS Name | The asset's NetBIOS name. |
| Operating System |
The operating system that a scan identified as installed on the asset. |
| Public |
Specifies whether the asset is available on a public network. A public asset is within the public IP space and identified by the is_public attribute in the Tenable Vulnerability Managementquery namespace. |
| Resource Tags |
For assets with a source of Cloud Discovery Connector, specifies imported tags or labels. The limit is 50 tags per resource for AWS and Azure and 64 labels per resource for GCP. In addition, Azure tags do not support JSON strings. |
| ServiceNow Sys ID |
Where applicable, the unique record identifier of the asset in ServiceNow. For more information, see the ServiceNow documentation. |
| Source |
The source of the scan that identified the asset. |
| System Type |
The operating system installed on the asset. |
| Tags |
Tags applied to the asset. |
| Updated Date |
The date and time when Tenable Vulnerability Management last updated the asset record. |