Tenable

Managed on-premises and powered by Nessus technology, the Tenable.sc suite of products provides the a comprehensive vulnerability coverage with real-time continuous assessment of a network. It’s a complete end-to-end vulnerability management solution.

Integration with LogicHub

Connecting with Tenable

To connect to Tenable following details are required:

  • Label: Connection name.
  • Reference Values: Define variables here to templatize integration connections and actions. For example, you can use https://www.{{hostname}}.com where, hostname is a variable defined in this input. For more information on how to add data, see 'Add Data' Input Type for Integrations.
  • Server IP or Hostname: Enter Server IP or Hostname where Tenable is installed and running. Example: http://111.111.111.111:443
  • Access Key: Enter Access Key for Tenable instance.
  • Secret Key: Enter Secret key for the Tenable instance.

Actions with Tenable

List Scan Results

Gets the list of Scan Results.

Inputs to this Action

  • Connection: Choose a connection that you have created.
  • Jinja Template Fields: Jinja templated comma separated field names which needs to be returned in the result set.
  • Start Time: Start time in ISO format for scan results to be retrieved. Example: 2019-09-26T07:58:30.996+02:00. Default is execution start time.
  • End Time: End time in ISO format for scan results to be retrieved. Example: 2019-09-26T07:58:30.996+02:00. Default is execution end time.

Output of Action
An Object containing following fields:

  • response: Array of reports
  • warnings: Array of any warnings
  • error_message: Any error message from the server
{
   "timestamp":1622212387,
   "warnings":[
      
   ],
   "response":{
      "usable":[
         {
            "id":"13464",
            "name":"Report Name",
            "description":"",
            "status":"Partial"
         }
      ]
   },
   "error_msg":"",
   "type":"regular",
   "error_code":0
}

Download Scan Result

Downloads a Scan Result by ID.

Inputs to this Action

  • Connection: Choose a connection that you have created.
  • Jinja Template Scan ID: Jinja templated scan ID whose reports is to be downloaded.
  • DOWNLOAD TYPE: Select download type. Default is V2. Valid options are: v2, diagnostic, oval, scap1 2

Output of Action
An Object containing following fields:

  • file_id: File ID of the downloaded report.
  • error: Error message, if any.
  • has_error: Whether the action succeeded or failed.
{
   "file_id":"b815d171c2d8409e857ce9ca43fd1523",
   "error":null,
   "has_error":false
}

Did this page help you?