Skip to content
English
NopSec.com
  • There are no suggestions because the search field is empty.

How do I configure a Tenable.IO Integration?

To create an API account with permissions to view asset and vulnerability data in Tenable.io, you will need to create a dedicated user, assign the appropriate role, and generate API keys.

Step 1: Create a Dedicated API User

      1. Log in to Tenable Vulnerability Management using an Administrator account.
      2. In the upper-left corner, click the Menu icon, then select Settings.
      3. In the left navigation pane, click Users.
      4. In the upper-right corner, click the Create User button.
      5. Fill out the required Name, Username, and Email fields. We recommend using a descriptive naming convention, such as "API_Service_Account_Read_Only".

Step 2: Assign Permissions and Access Groups

To restrict this API account to only view specific subsets of data (rather than your entire organization's data), you will assign it the Basic role and then add the user to your targeted Access Groups.

      1. Still in the Create User pane, locate the Role drop-down menu.
      2. Select the Basic role and click Save at the bottom of the pane to create the user.
      3. To assign the user to a specific Access Group, return to the main Settings page by clicking the Menu icon in the upper-left corner and selecting Settings.
      4. Click the Access Groups tile.
      5. In the access groups table, click the name of the specific Access Group you want this API account to be able to view.
      6. Scroll down to the Users & Groups section of the configuration page.
      7. In the search box, type the name of the API user you just created and select them from the drop-down list.
      8. The system will add the user with default Can View permissions. Since this is an API account strictly for pulling and viewing data, leave this as Can View.
      9. Click Save to apply the changes. Repeat steps 4–9 for any additional Access Groups this API account needs to query.

Note: Tenable is currently in the process of retiring traditional Access Groups in favor of tag-based "Permission Configurations." If your instance has already been converted to the new interface, you will instead assign access by navigating to Settings > Access Control > Permissions and adding a read-only Permission Configuration to your newly created API user.

Step 3: Generate API Keys

      1. Navigate back to the main Users list (Settings > Users).
      2. Locate the API account you created in Step 1.
      3. Click anywhere on the row of that user to open the user details pane on the right side of the screen.
      4. In the details pane, select the API Keys tab.
      5. Click the Generate button. A warning will appear stating that any existing keys will be replaced. Confirm the generation.
      6. The system will display the new Access Key and Secret Key.

Important: Copy the Secret Key immediately and store it securely (like in a password vault). Tenable does not display the Secret Key again after this window is closed.

Step 3: Enable Tenable.IO in the Nopsec Platform

  1. Navigate to Integrations in the NopSec UI and select the option to add 

  2. Enter Integration Access Info: When prompted enter the following information and click the "Save and Connect" button:

    • Connection Name: Unique name for this integration
    • Access Token:  The Access Key generated in the steps above..
    • Secret Token: The Secret Key generated in the steps above
    • SAVE and CLOSE