Host Audit Findings Details

Required User Role: Read-Only, Basic User, Scan Operator, Standard User, Scan Manager, or Administrator

On the Host Audits page, click a finding to open a details pane. Then, click to expand the pane.

The upper part of the Host Audit Details pane contains the following information.

Attribute

Description

Audit Check Name

The name of the host audit check, displayed as the title of the details pane, for example Check 6.

Result

The result of the audit check, displayed with a color-coded icon. Possible values are Passed, Failed, Warning, Info, Skipped, Error, and Unknown. The category label (for example, Custom) indicates the benchmark or policy source.

ACR

(Requires Tenable One / Tenable Lumin license) The Tenable-defined Asset Criticality Rating (ACR) is an integer from 1 to 10.

ACR helps prioritize remediation by identifying which failing audit checks affect your most critical assets.

Asset Category

The category of the asset associated with the finding, for example Unknown Device.

Asset Function

The function of the asset associated with the finding, for example Unknown Device.

The lower part of the Host Audit Details pane is divided into tabs.

Details

The Details tab breaks down information about the host audit finding. Sections appear only when the finding contains the relevant data.

Section

Description

Description A description of the audit check.
Fixes

If available, details about how to remediate the finding, including:

  • Solution — A summary of how to officially remediate the finding.

  • See Also — Links to websites with helpful information about the audit check.

Host Audit Information

Information about the audit check, including:

  • Audit Name — The name of the specific audit check.

  • Audit File — The audit file that contains the check.

  • Benchmark — The benchmark or policy standard associated with the audit check.

  • Benchmark Specification Name — The specification name of the benchmark.

  • Plugin Name — The name of the plugin that performed the audit check.

Audit Output

The output from the audit check, including:

  • Actual Value — The value detected on the target system during the audit.

  • Policy Value — The expected value defined by the audit policy.

References A list of compliance framework references associated with the audit check, displayed as Framework: Control pairs — for example, 800-53: CM-6.
Note: To change the result of a host audit finding, use Add Recast Rule from the menu. See Add a Recast Rule.

Asset Summary

The Asset Summary tab contains details about the asset associated with the finding.

Section

Description

Asset

Information about the affected asset, including:

  • Asset Name — The name of the asset where the audit check ran.
  • Asset ID — The UUID of the asset.
  • System Type — The type of system, for example general-purpose.
  • Public — Indicates if the asset is available on a public network.
  • IPv4 Addresses — The IPv4 address of the asset.
  • Network — The network the asset belongs to.
  • DNS (FQDN) — The fully qualified domain name of the asset.

Click Open in Assets to view the full asset record in Explore > Assets.

Last Seen

Information about when the asset was last identified on a scan, including:

  • Scan Name — The name of the scan that last detected the asset.
  • First Seen — The date when the asset was first detected.
  • Last Seen — The date when the asset was last detected.
  • Last Licensed Scan — The date and time of the last scan in which the asset was considered licensed.
  • Sources — The source of the scan that detected the asset, for example Tenable Nessus.

Findings

The Findings tab displays vulnerability findings detected on the same asset, allowing you to correlate compliance failures with vulnerability exposure.

Select Open in Findings to view the full findings list for this asset on the Explore > Findings page.