Scan Limitations

The following table describes scanning limitations in Tenable Vulnerability Management:

Limitation Description
Scan targets per scan Tenable Vulnerability Management limits the number of targets you can scan in a single scan. The scan target limit is approximately ten times your organization's licensed asset count.

For example, if your organization has a licensed asset count of 1,000, Tenable Vulnerability Management does not allow you to scan more than 10,000 targets in a single scan. If you exceed the limit, Tenable Vulnerability Management aborts the scan. If you are unsure of what your scan target limit is, or would like to increase the limit, contact Tenable Support.

If Tenable Vulnerability Management aborts a scan because it exceeds the scan target limit, Tenable recommends splitting the scan into multiple smaller scans and rescanning.

Scan results per scan Tenable Vulnerability Management limits the number of scan results that a single scan can generate. The scan results limit is approximately 110% of your organization's licensed asset count.

For example, if your organization has a licensed asset count of 1,000, Tenable Vulnerability Management does not allow you to generate more than 1,100 scan results from a single scan. If you exceed the limit, Tenable Vulnerability Management aborts the scan. Tenable Vulnerability Management does not apply the scan result limit to discovery scans. If you are unsure of what your limit is, or would like to increase the limit, contact Tenable Support.

If Tenable Vulnerability Management aborts a scan because it exceeds the scan results limit, Tenable recommends splitting the scan into multiple smaller scans and rescanning.

IP addresses per scan You cannot apply more than 300,000 IP address targets to a scan.
Active scans You cannot have more than 25 scans running in your container simultaneously.
Scan chunks Tenable Vulnerability Management limits scan chunks to 10,000 hosts or 150,000 findings. If a scan chunk exceeds either value, Tenable Vulnerability Management does not process the scan and eventually aborts it.
Scan configurations Tenable Vulnerability Management limits the number of scan configurations you can create to 10,000 scans. Tenable recommends re-using scheduled scans instead of creating new scans. This approach helps to avoid latency issues in the user interface.