Asset Columns
On the Assets tab in Explore, you can view the assets in your environment broken down into categories including hosts, web applications, domain inventory, and other devices.
The Assets tab has the following columns, which you can show or hide as described in Use Tables. Column fields displayed for specific asset types are shown in the Asset Type column of this table.
| Column Field | Asset Type (s) | Description |
|---|---|---|
| ACR | Hosts, Web Applications |
(Requires Tenable One or Tenable Lumin license) The Tenable-defined Asset Criticality Rating (ACR) as an integer from 1 to 10. |
| AES | Hosts, Web Applications |
(Requires Tenable One or Tenable Lumin license) The Tenable-defined Asset Exposure Score as an integer from 0 to 1000. |
| Agent Name | Hosts |
The name of the Tenable Nessus agent that scanned and identified the asset. |
| Asset ID | Hosts,Web Applications |
The UUID of the asset. This value is unique to Tenable Vulnerability Management. |
| AWS Availability Zone | Hosts |
The name of the Availability Zone where AWS hosts the virtual machine instance. For more information, see Regions and Zones in the AWS documentation. |
| AWS EC2 AMI ID | Hosts |
The unique identifier of the Linux AMI image in Amazon Elastic Compute Cloud (Amazon EC2). For more information, see the Amazon Elastic Compute Cloud Documentation. |
| AWS EC2 Instance ID | Hosts |
The unique identifier of the Linux instance in Amazon EC2. For more information, see the Amazon Elastic Compute Cloud Documentation. |
| AWS EC2 Name | Hosts |
The name of the virtual machine instance in Amazon EC2. |
| AWS EC2 Product Code | Hosts |
The product code associated with the AMI used to launch the virtual machine instance in Amazon EC2. |
| AWS Instance State | Hosts |
The state of the virtual machine instance in AWS at the time of the scan. For possible values, see InstanceState in the Amazon Elastic Compute Cloud Documentation. |
| AWS Instance Type | Hosts |
The type of virtual machine instance in Amazon EC2. Amazon EC2 instance types dictate the specifications of the instance (for example, how much RAM it has). For a list of possible values, see Amazon EC2 Instance Types in the AWS documentation. |
| AWS Owner ID | Hosts |
A UUID for the Amazon AWS account that created the virtual machine instance. This attribute only appears for Amazon EC2 instances. For more information, see View AWS Account Identifiers in the AWS documentation |
| AWS Region | Hosts |
The region where AWS hosts the virtual machine instance, for example, us-east-1. |
| AWS Security Group | Hosts |
The AWS security group (SG) associated with the Amazon EC2 instance. |
| AWS Subnet ID | Hosts |
The unique identifier of the AWS subnet where the virtual machine instance was running at the time of the scan. |
| AWS VPC ID | Hosts |
The unique identifier of the public cloud that hosts the AWS virtual machine instance. For more information, see the Amazon Virtual Private Cloud Documentation. |
| Azure Resource ID | Hosts | Where applicable, the Azure resource ID of the asset, as described in the Tenable Vulnerability ManagementMicrosoft Azure documentation. |
| Azure Subscription ID | Hosts | The unique subscription identifier of the resource in the Azure Resource Manager. For more information, see the Azure Resource Manager documentation. |
| Azure VM ID | Hosts | Where applicable, the Azure VM ID of the asset, as described in the Tenable Vulnerability Management Microsoft Azure documentation. |
| Cloud Provider | Hosts | Indicates whether the asset is from AWS, Azure, or GCP. |
| Created Date | Hosts, Web Applications |
The date and time when Tenable Vulnerability Management created the asset record. |
| Device Class | Hosts, Web Applications |
The purpose of the asset. For example, "Is it a server?" Every asset belongs to exactly one Device Class creating a clear and organized hierarchy. Device Classes have Device Subclasses. |
| Device Subclasses | Hosts, Web Applications |
Specifies the primary function or role of the asset. For example, within the Compute and Application Server class, the device subclass would distinguish a web application server from a database server. Assets may have multiple device subclass values. |
| DNS (FQDN) | Hosts |
The fully qualified domain name of the asset host. When processing fully qualified domain names (FQDNs) for host assets, Tenable Vulnerability Management normalizes all FQDNs to lowercase and then merges any duplicates. |
| First Seen | Hosts, Web Applications |
The date and time when a scan first identified the asset. |
| Google Cloud Instance ID | Hosts | Where applicable, the Google cloud instance ID of the asset, as described in the Tenable Vulnerability Management Google Cloud Platform documentation. |
| Google Cloud Project ID | Hosts | Where applicable, the Google cloud project ID of the asset, as described in the Tenable Vulnerability Management Google Cloud Platform documentation. |
| Google Cloud Zone | Hosts | Where applicable, the Google cloud zone of the asset, as described in the Tenable Vulnerability Management Google Cloud Platform documentation. |
| Has Plugin Results | Hosts |
Specifies whether the asset has plugin results associated with it. |
| IPV4 Addresses | Hosts, Web Applications |
The IPv4 address for the affected asset. |
| IPV6 Addresses | Hosts |
The IPv6 address for the affected asset. |
| Last Authenticated Scan | Hosts, Web Applications |
The date and time of the last authenticated scan run against the asset. An authenticated scan that only uses discovery plugins updates the Last Authenticated Scan field, but not the Last Licensed Scan field. |
| Last Scan Target | Hosts | The IP address or fully qualified domain name (FQDN) of the asset targeted in the last scan. |
| Last Licensed Scan | Hosts, Web Applications |
The date and time of the last scan in which the asset was considered "licensed" and counted towards Tenable's license limit. A licensed scan uses non-discovery plugins and can identify vulnerabilities. Unauthenticated scans that run non-discovery plugins update the Last Licensed Scan field, but not the Last Authenticated Scan field. For more information on how licenses work, see Tenable Vulnerability Management Licenses. |
| Last Seen | Hosts, Web Applications |
Filter on the date that the asset was last observed by any successful scan, including vulnerability scans, configuration scans, and discovery scans. This value can also be the date that the asset was imported into Tenable Vulnerability Management. |
| Licensed | Hosts, Web Applications |
Indicates if the asset is licensed within Tenable Vulnerability Management. For more information, see Tenable Vulnerability Management Licenses. |
| MAC Address | Hosts |
A MAC address that a scan has associated with the asset record. |
| Name | Hosts, Web Applications |
The asset identifier, assigned based on the availability of the following attributes in order: Agent name, NetBIOS name, Local hostname, Fully Qualified Domain Name (FQDN), IPv4 address, and IPv6 address. |
| NetBIOS Name | Hosts | The asset's NetBIOS name. |
| Operating System | Hosts, Web Applications |
One of the operating system(s) that a scan identified on the asset. |
| Public | Hosts, Web Applications |
Specifies whether the asset is available on a public network. A public asset is within the public IP space and identified by the is_public attribute in the Tenable Vulnerability Managementquery namespace. |
| Resource Tags | Hosts |
For assets with a source of Cloud Discovery Connector, specifies imported tags or labels. The limit is 50 tags per resource for AWS and Azure and 64 labels per resource for GCP. In addition, Azure tags do not support JSON strings. |
| ServiceNow Sys ID | Hosts |
Where applicable, the unique record identifier of the asset in ServiceNow. For more information, see the ServiceNow documentation. |
| SSL/TLS | Hosts, Web Applications | TBD |
| Source | Hosts, Web Applications |
The source of the scan that identified the asset. |
| System Type | Hosts |
The operating system installed on the asset. |
| Tags | Hosts, Web Applications |
Tags applied to the asset. |
| Updated Date | Hosts, Web Applications |
The date and time when Tenable Vulnerability Management last updated the asset record. |