Mobile

Note: Some credential types may not be available for configuration, depending on the scan template you selected.

Note: The maximum number of mobile devices that can be retrieved in a single scan is 10,000.

Option Default Description
Domain Controller --

The domain controller for ActiveSync.
Domain --

The Windows domain for ActiveSync.
Domain Username --

The username for the domain administrator's account that Tenable Vulnerability Management uses to authenticate to ActiveSync.
Domain Password --

The password for the domain administrator user.
Scanner -- Specifies which scanner Tenable Vulnerability Management uses when scanning the server. Tenable Vulnerability Management can only use one scanner to add data to a mobile repository.
Update Schedule Every day at 12:30 -04:00 Specifies when Tenable Vulnerability Management scans the server to update the mobile repository. On each scan, Tenable Vulnerability Management removes the current data in the repository and replaces it with data from the latest scan.
Setting Default Value Description Required

AirWatch Environment API URL

The Workspace ONE API url endpoint. (For example, https://xxx.awmdm.com/api)

 yes

Port

 443

The TCP port that AirWatch listens on for communications from Tenable.

 yes

Username

The username for the AirWatch user account Tenable uses to authenticate to Workspace One's API.

 yes

Password

The password for the AirWatch user.

 yes

API Key

The API key for the VMware Workspace ONE API.

 yes

HTTPS

Enabled

Enable for Tenable Vulnerability Management to authenticate over an encrypted (HTTPS) or an unencrypted (HTTP) connection.

 no

Verify SSL Certificate

Enabled

Enable for Tenable Vulnerability Management to verify if the SSL Certificate on the server is signed by a trusted CA.

 no
Option Description
Hostname The server URL to authenticate with Blackberry UEM.
Port The port to use to authenticate with Blackberry UEM.
Tenant

The SRP ID in Blackberry UEM.

Note: To locate the SRP ID in Blackberry UEM: 

  1. In the Blackberry UEM top navigation bar, click the Help drop-down.

  2. Click About Blackberry UEM.

    An information window containing the SRP ID appears.

  3. Copy the SRP ID.
Domain The domain name for Blackberry UEM.
Username The username for the account you want Tenable Vulnerability Management to use to authenticate to Blackberry UEM.
Password The password for the account you want Tenable Vulnerability Management to use to authenticate to Blackberry UEM.
HTTPS When enabled, Tenable Vulnerability Management uses an encrypted connection to authenticate with Blackberry UEM.
Verify SSL Certificate When enabled, Tenable Vulnerability Management verifies that the SSL Certificate on the server is signed by a trusted CA.
Option Description
Tenant The Microsoft Azure Directory (tenant) ID visible in your App registration.
Client The Microsoft Azure Application (client) ID generated during your App registration.
Secret The secret key generated when you created your client secret key in Microsoft Azure.
Username The username for the account you want Tenable Vulnerability Management to use to authenticate to Intune.
Password The password for the account you want Tenable Vulnerability Management to use to authenticate to Intune.
Option Description Default Value Required

VSP Admin Portal URL

The server URL Tenable uses to authenticate to the Ivanti administrator portal.

 -

yes

VSP Admin Portal Port

The port Tenable uses to authenticate to the Ivanti administrator portal.

 443

no

Port

The port Tenable uses to authenticate to Ivanti.

 443

yes

Username

The username for the account you want Tenable to use to authenticate to Ivanti.

 -

yes
Password

The password for the account you want Tenable to use to authenticate to Ivanti.

 -

yes
HTTPS

When enabled, Tenable uses an encrypted connection to authenticate to Ivanti.

 Enabled

no
Verify SSL Certificate When enabled, Tenable verifies that the SSL Certificate on the server is signed by a trusted CA. Enabled

no
Setting Default Value Description Required

Username

The username to authenticate.

 yes

Password

The password to authenticate.

 yes

Root URL

The server URL to authenticate with MaaS360.

 yes

Platform ID

The Platform ID provided for MaaS360.

 yes

Billing ID

The Billing ID provided for MaaS360.

 yes

App ID

The App ID provided for MaaS360.

 yes

App Version

The App Version of MaaS360.

 yes

App access key

The App Access Key provided for MaaS360.

 yes
Collect All Device Data On

When enabled, the scan collects all data types.

When disabled, the scan collects one or more types of data to decrease the scan time. When disabled, choose one or more of the following collection options:

  • Collect Device Summary

  • Collect Device Applications

  • Collect Device Compliance

  • Collect Device Policies

 no
Setting Default Value Description Required

VSP Admin Portal URL

The server URL Tenable Vulnerability Management uses to authenticate with the MobileIron Admin Portal.

 yes
VSP Admin Portal Port 443 The port Tenable Vulnerability Management uses to authenticate with the MobileIron Admin Portal. no

Port

 443

The port Tenable Vulnerability Management uses to authenticate with the MobileIron System Manager.

 yes

Username

The username to authenticate.

 yes

Password

The password to authenticate.

 yes

HTTPS

Enabled

Whether Tenable Vulnerability Management authenticates over an encrypted (HTTPS) or an unencrypted (HTTP) connection.

 no

Verify SSL Certificate

Enabled

Whether Tenable Vulnerability Management verifies if the SSL Certificate on the server is signed by a trusted CA.

 no
Note: For the Workspace ONE integration to function properly, you must be assigned all the Read-Only permissions available for the role. For more information, see the VMware documentation.
Setting Default Value Description Required

Workspace ONE Environment API URL

The Workspace ONE API url endpoint. (For example, https://xxx.awmdm.com/api)

 yes

Port

 443

The TCP port that Workspace ONE listens on for communications from Tenable.

 yes

Workspace ONE Username

The username for the Workspace ONE user account Tenable uses to authenticate to Workspace ONE's API.

 yes

Workspace ONE Password

The password for the Workspace ONE user.

 yes

API Key

The API key for the VMware Workspace ONE API.

 yes

HTTPS

Enabled

Enable for Tenable Vulnerability Management to authenticate over an encrypted (HTTPS) or an unencrypted (HTTP) connection.

 no

Verify SSL Certificate

Enabled

Enable for Tenable Vulnerability Management to verify if the SSL Certificate on the server is signed by a trusted CA.

 no

Collect All Device Data

 Yes

Collects all device data required for plugin checks.

 no

Collect Device Applications

 Yes

(Enabled if Collect All Device Data is set to "No") Collects applications installed on mobile devices.

 no