Manage User-Defined Templates

Use the following procedures to manage your user-defined templates. For more information about user-defined templates, see User-Defined Templates.

Navigate to User-Defined Templates

In the left navigation, click Scans.

The Scans page appears.
In the upper-right corner of the page, click the Tools button.

A menu appears.
Select Manage Scan Templates.

The Scan Templates page appears.

Create a User-Defined Template

You can create user-defined scan templates to save and share custom scan settings with other Tenable Vulnerability Management users.

When you define a scan template, Tenable Vulnerability Management assigns you owner permissions for the scan template. You can share the scan template by assigning template permissions to other users, but only you can delete the scan template.

To create a user-defined scan template:

In the left navigation, click Scans.

The Scans page appears.
Below Scans, choose to view Vulnerability Management Scans or Web Application Scans.
In the upper-right corner of the page, click the Create Template button.

The Select a Template page appears.
Click the tile for the template you want to use as the base for your user-defined scan template.

The Create a Template page appears.

Do one of the following:

If you are creating a Tenable Vulnerability Management scan template, use the following procedure:

Configure the scan template:

Tab	Action
Settings	Configure the settings available in the scan template. Basic Settings — Specifies the name of the scan template, its description, and who has permissions for the scan template. Discovery Settings — Specifies how a scan performs discovery and port scanning. Assessment Settings — Specifies how a scan identifies vulnerabilities, as well as what vulnerabilities are identified. This includes identifying malware, assessing the vulnerability of a system to brute force attacks, and the susceptibility of web applications. Report Settings — Specifies whether the scan generates a report. Advanced Settings — Specifies advanced controls for scan efficiency.
Credentials	Specify credentials you want Tenable Vulnerability Management to use to perform a credentialed scan.
Compliance/SCAP	Specify the platforms you want to audit. Tenable, Inc. provides best practice audits for each platform. Additionally, you can upload a custom audit file.
Plugins	Select security checks by plugin family or individual plugin.

If you are creating a Tenable Web App Scanning scan, use the following procedure:

Configure the scan:

Tab	Action
Settings	Configure the settings available in the scan template. For more information, see Basic Settings in Tenable Web App Scanning Scans.
Scope	Specify the URLs and file types that you want to include in or exclude from your scan. For more information, see Scope Settings in Tenable Web App Scanning Scans.
Assessment	Specify how a scan identifies vulnerabilities and what vulnerabilities the scan identifies. This includes identifying malware, assessing the vulnerability of a system to brute force attacks, and the susceptibility of web applications. For more information, see Assessment Settings in Tenable Web App Scanning Scans.
Advanced	Specify advanced controls for scan efficiency.
Credentials	Specify credentials you want Tenable Vulnerability Management to use to perform a credentialed scan.
Plugins	Select security checks by plugin family or individual plugin.

Click Save.

Tenable Vulnerability Management saves the user-defined scan template and adds it to the list of scan templates on the Scan Templates page.

Edit a User-Defined Template

Required Template Permissions: Can Configure

To edit a user-defined scan template:

In the left navigation, click Scans.

The Scans page appears.
Below Scans, choose to view Vulnerability Management Scans or Web Application Scans.
In the upper-right corner of the page, click the Tools button.

A menu appears.
Select Manage Scan Templates.

The Scan Templates page appears.
In the scan templates table, click the scan template you want to edit.

The Edit a Scan Template page appears.

Do one of the following:

If you are editing a Tenable Vulnerability Management scan template, use the following procedure:

Configure the scan template options:

Tab	Action
Settings	Configure the settings available in the scan template. Basic Settings — Specifies the name of the scan template, its description, and who has permissions for the scan template. Discovery Settings — Specifies how a scan performs discovery and port scanning. Assessment Settings — Specifies how a scan identifies vulnerabilities, as well as what vulnerabilities are identified. This includes identifying malware, assessing the vulnerability of a system to brute force attacks, and the susceptibility of web applications. Report Settings — Specifies whether the scan generates a report. Advanced Settings — Specifies advanced controls for scan efficiency.
Credentials	Specify credentials you want Tenable Vulnerability Management to use to perform a credentialed scan.
Compliance/SCAP	Specify the platforms you want to audit. Tenable, Inc. provides best practice audits for each platform. Additionally, you can upload a custom audit file.
Plugins	Select security checks by plugin family or individual plugin.

If you are editing a Tenable Web App Scanning scan template, use the following procedure:

Configure the scan template options:

Tab	Action
Settings	Configure the settings available in the scan template. For more information, see Basic Settings in Tenable Web App Scanning Scans.
Scope	Specify the URLs and file types that you want to include in or exclude from your scan. For more information, see Scope Settings in Tenable Web App Scanning Scans.
Assessment	Specify how a scan identifies vulnerabilities and what vulnerabilities the scan identifies. This includes identifying malware, assessing the vulnerability of a system to brute force attacks, and the susceptibility of web applications. For more information, see Assessment Settings in Tenable Web App Scanning Scans.
Advanced	Specify advanced controls for scan efficiency.
Credentials	Specify credentials you want Tenable Vulnerability Management to use to perform a credentialed scan.
Plugins	Select security checks by plugin family or individual plugin.

Click Save.

Tenable Vulnerability Management saves the user-defined scan template and adds it to the list of templates on the Scan Templates page.

Copy a User-Defined Template

When you copy a user-defined scan template, Tenable Vulnerability Management assigns you owner permissions for the copy. You can share the copy by assigning template permissions to other users, but only you can delete the copied scan template.

To copy a user-defined scan template:

In the left navigation, click Scans.

The Scans page appears.
Below Scans, choose to view Vulnerability Management Scans or Web Application Scans.
In the upper-right corner of the page, click the Tools button.

A menu appears.
Select Manage Scan Templates.

The Scan Templates page appears.
In the scans table, roll over the scan you want to launch.
In the row, click the button.

A menu appears.
In the menu, click the button.
A Template copied message appears. Tenable Vulnerability Management creates a copy of the scan template with Copy of prepended to the name and assigns you owner permissions for the copy. The copy appears in the scan templates table.

Export a User-Defined Template (Tenable Vulnerability Management only)

You can export a user-defined scan template for later import.

Note:Tenable Vulnerability Management does not export passwords, credentials, and file-based settings (for example, .audit files and the SSH known_hosts file) in user-defined scan templates.

To export a user-defined scan template:

In the left navigation, click Scans.

The Scans page appears.
Below Scans, choose to view Vulnerability Management Scans
In the upper-right corner of the page, click the Tools button.

A menu appears.
Select Manage Scan Templates.

The Scan Templates page appears.
In the scans table, roll over the scan template you want to export.
In the row, click the button.

A menu appears.
In the row, click the button.

Tenable Vulnerability Management exports the user-defined scan template as a .nessus file.

Note: To learn more about the .nessus file format, see Nessus File Format.

Import a User-Defined Template (Tenable Vulnerability Management only)

When you import a scan template, Tenable Vulnerability Management assigns you owner permissions for the scan template. You can share the scan template by assigning template permissions to other users, but only you can delete the scan template.

Tenable Vulnerability Management does not include passwords or compliance audit files in exported user-defined scan templates. You must add these settings in manually after importing the scan template.

To import a user-defined scan template:

In the left navigation, click Scans.

The Scans page appears.
Below Scans, choose to view Vulnerability Management Scans.
In the upper-right corner of the page, click the Tools button.

A menu appears.
Select Manage Scan Templates.

The Scan Templates page appears.
In the upper-right corner of the page, click the Import button.
Your file manager appears.
Select the scan template you want to import.
Click Open.
A Template uploaded message appears, and the scan template appears on the Scan Templates page.

What to do next:

As needed, add passwords and compliance audit files to the imported template.

Delete a User-Defined Template

If you delete a user-defined scan template, Tenable Vulnerability Management deletes it from all user accounts.

Before you begin:

Delete any scans that use the template you want to delete. You cannot delete a scan template if a scan is using the template.

To delete a user-defined scan template or templates:

In the left navigation, click Scans.

The Scans page appears.
Below Scans, choose to view Vulnerability Management Scans or Web Application Scans.
In the upper-right corner of the page, click the Tools button.

A menu appears.
Select Manage Scan Templates.

The Scan Templates page appears.
Select the scan template or templates you want to delete:
- Select a single scan template:
  1. In the scans table, roll over the scan you want to launch.
  2. In the row, click the button.
    
    A menu appears.
  3. In the menu, click the button.
    
    A confirmation window appears.
- Select multiple scan templates:
  1. In the scan templates table, select the check box for each scan template you want to delete.
    The action bar appears at the bottom of the page.
  2. In the action bar, click the button.
    A confirmation window appears.
In the confirmation window, click Delete.

Tenable Vulnerability Management deletes the user-defined scan template or templates you selected.

Change User-Defined Template Ownership

Required Tenable Vulnerability Management User Role: Scan Manager or Administrator

Required Template Permissions: Owner

To change the ownership of a user-defined scan template in the new interface:

Edit a User-Defined Template.
In the left navigation menu, in the Settings section, click Basic.

The Basic settings appear.
In the User Permissions section, next to the permission drop-down for Owner, click the button.
A list of available user accounts appears.
Select a user from the list.
Tenable Vulnerability Management automatically adds you to the list of users and assigns Can View permissions to your user account.
(Optional) Remove all permissions for your user account:
1. In the user list, roll over your user account.
  The button appears at the end of the listing.
2. Click the button.
  Tenable Vulnerability Management removes your account from the list of users.
(Optional) Edit permissions for your user account:
1. Next to the permission drop-down for your user account, click the button.
2. Select a permission.
Click Save.

Tenable assigns ownership to the selected user and assigns your user account the permissions you selected. If you removed all permissions for your user account from the template, the template no longer appears in the templates table.