Nessus
Overview
Nessus is a network vulnerability scanner and assessment tool.
Available Integrations
| Product(s) | Supported Asset Type(s) | Integration Type |
|---|---|---|
| Nessus | Devices, Vulnerabilities | Source |
Configuration
- Choose an Access Schema: A schema is a configuration template that defines a specific way to connect, authenticate, and interact with an external product. The following are the available schemas
- Access / Secret Key: Will authenticate using a generated Access/Secret key pair
- Configure the Access Schema
Client ID / Client Password
| Field | Description | Example |
|---|---|---|
URL* | URL or IP address of the Nessus Server | https://nessus.sevco.io |
Skip TLS Certificate Validation | Check this box only if you are connecting to a trusted server. This allows potentially insecure connections by bypassing the verification of all TLS connections to the server. | N/A |
Access Key* | The API Access key used to identify the authorization and permissions | 1kJqSgEafiRP35qURcTTYckRbjzD2JM2xBUm4PThX2gfbp6peWUyt6bWwh6mAUN0 |
Secret Key* | The API secret key used to authenticate with the source | 8G54cQXAqNWBPu8UK7dLPc2eBuQRatameby0xWaHgWRMLt28XUQCxvDJSArd7iNr |
Add an Integration: Select the integration(s) you'd like to add.
- Configure General Information: OPTIONAL: You can use the following fields to provide additional information about your configuration.
| Field | Description | Example |
|---|---|---|
Name (optional) | Uniquely identifiable attribute of the configuration to delineate other similar configurations with the existing organization. | 'DMZ network' |
Contact Person (optional) | A placeholder to input a name or email address of a contact associated with the integration. | 'Jane Doe' |
Link to Console (optional) | A placeholder to input a link to the console of the product Sevco is integrating with for quick reference and access when configuring or editing the integration. | 'www.product.com/devices' |
Email me about frequent errors | Select this toggle to receive an email whenever an Integration has a ≥30% error rate in a 24-hour period. | n/a |
- Activate Config: To enable this configuration select "Activate".
External Documentation
Creating credentials
You'll be asked to provide source credentials that Sevco will use to connect to Nessus. The following link will step you through creating an API key: https://docs.tenable.com/nessus/Content/GenerateAnAPIKey.htm
Required permissions
See integration specific documentation for details
| Integration | Permission(s) | Resources |
|---|---|---|
| Collect devices | Read | Folders Scans Hosts |
| Collect vulnerabilities | Read | Folders Scans Hosts Plugins |
API Documentation
API documentation is available on your Nessus device(s) at <hostname>:8834/api
Contact Us
If you're having problems configuring an integration, or if you've found something wrong in this document, please email us at [email protected] or suggest edits directly by selecting the Suggest Edits link located in the upper right hand corner of the documentation.
Updated 9 months ago