Considerations for Tags with Rules

Automatic Application

Tenable Vulnerability Management evaluates assets against tag rules in the following situations:

• When you add a new asset (via scan, connector import, or leveraging the Tenable Vulnerability Management API), Tenable Vulnerability Management evaluates the asset against your tag rules.

• When you create or update a tag rule, Tenable Vulnerability Management evaluates your assets against the tag rule.

  Note: When you create or edit a tag rule, Tenable Vulnerability Management may take some time to apply the tag to existing assets, depending on the system load and the number of matching assets.

• When you update an existing asset, Tenable Vulnerability Management re-evaluates the asset and removes the tag if the asset's attributes no longer match the tag rules.

Manual Application

If you manually apply a tag that has been configured with rules, Tenable Vulnerability Management excludes that asset from any further evaluation against the rules.