Tenable automatically discovers and assesses an environment for vulnerabilities, misconfigurations, and other cybersecurity issues.

Lucidum uses the Tenable connector to ingest data from Tenable Nessus and Tenable SC.

Requirements

To use the Tenable Connector in Lucidum:

  1. Before configuring the Tenable connector in Lucidum, you must first define credentials for Lucidum in the Tenable API.

  2. You can then configure the Tenable connector in Lucidum and start ingesting data from Tenable.

Define Credentials for Lucidum in Tenable

To generate an API key in the Tenable console:

  1. Login to the Tenable console with an administrator account.

  2. Click the hamburger icon (three stacked lines) in the upper left corner.

  3. In the left pane, click Settings.

  4. In the Settings page appears, click the My Account tile.

  5. In the My Account page appears, in the upper-right corner, click the person button (outline of a head and shoulders).

  6. In the user account menu appears, click My Account.

  7. In the My Account page, click the API Keys tab.

  8. In the API Keys section, click Generate.

  9. In the Generate API Keys window, review the warning and click Generate.

  10. Tenable generates an access key and a secret key and displays the new keys in the Custom API Keys section of the page.

  11. Copy the new access key and secret keys to a safe location.

Configuring the Tenable Connector

To configure Lucidum to ingest data from Tenable:

  1. Log in to Lucidum.

  2. In the left pane, click Connector.

  3. In the Connector page, click Add Connector.

  4. Scroll until you find the Connector for Tenable. Click Connect. The Settings page appears.

  5. In the Settings page, enter the following

    • Host. The hostname of the Tenable server. For Tenable IO, the default value is https://cloud.tenable.com .

    • Access Key. Enter the value for the API Key that you generated in the previous section.

    • Access Secret. Enter the value for the API Secret that you generated in the previous section.

    • Verify SSL. Optional. Default value is False.

      • True. Validate that the server certificate matches the expected certificate, usually the locally trusted root certificate used in the browser. If you are connecting to an API via HTTPS, you can select this option.

      • False. Do not validate the certificate.

  6. To test the configuration, click Test.

    • If the connector is configured correctly, Lucidum displays a list of services that are accessible with the connector.

    • If the connector is not configured correctly, Lucidum displays an error message.

Supported Actions

The Tenable connector supports these Actions:

  • Add IPs to Tenable Scan