Nessus 8.15 User Guide
Total Page:16
File Type:pdf, Size:1020Kb
Nessus 8.15.x User Guide Last Updated: September 24, 2021 Table of Contents Welcome to Nessus 8.15.x 14 Get Started with Nessus 17 Navigate Nessus 19 System Requirements 20 Hardware Requirements 21 Software Requirements 25 Customize SELinux Enforcing Mode Policies 29 Licensing Requirements 30 Deployment Considerations 31 Host-Based Firewalls 32 IPv6 Support 33 Virtual Machines 34 Antivirus Software 35 Security Warnings 36 Certificates and Certificate Authorities 37 Custom SSL Server Certificates 39 Create a New Server Certificate and CA Certificate 41 Upload a Custom Server Certificate and CA Certificate 43 Trust a Custom CA 45 Create SSL Client Certificates for Login 47 Nessus Manager Certificates and Nessus Agent 50 Install Nessus 52 Copyright © 2021 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trade- marks of Tenable,Inc. Tenable.sc, Tenable.ot, Lumin, Indegy, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective Download Nessus 53 Install Nessus 55 Install Nessus on Linux 56 Install Nessus on Windows 58 Install Nessus on Mac OS X 60 Deploy Nessus as a Docker Image 62 Install Nessus Agents 66 Retrieve the Linking Key 67 Install a Nessus Agent on Linux 68 Install a Nessus Agent on Windows 72 Install a Nessus Agent on Mac OS X 78 Link an Agent to Nessus Manager 82 Upgrade Nessus and Nessus Agents 85 Upgrade Nessus 86 Upgrade from Evaluation 87 Update Nessus Software 88 Upgrade Nessus on Linux 91 Upgrade Nessus on Windows 92 Upgrade Nessus on Mac OS X 93 Upgrade a Nessus Agent 94 Downgrade Nessus Software 100 Configure Nessus 102 Install Nessus Essentials, Professional, or Manager 103 Link to Tenable.io 105 Copyright © 2021 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trade- marks of Tenable,Inc. Tenable.sc, Tenable.ot, Lumin, Indegy, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective Link to Nessus Manager 107 Managed by Tenable.sc 109 Manage Activation Code 111 View Activation Code 112 Reset Activation Code 113 Update Activation Code 114 Transfer Activation Code 116 Manage Nessus Offline 118 Install Nessus Offline 120 Generate Challenge Code 123 Generate Your License 124 Download and Copy License File (nessus.license) 125 Register Your License with Nessus 126 Download and Copy Plugins 127 Install Plugins Manually 128 Update Nessus Software Manually on an Offline system 130 Offline Update Page Details 132 Back Up Nessus 133 Restore Nessus 134 Remove Nessus and Nessus Agents 136 Remove Nessus 137 Uninstall Nessus on Linux 138 Uninstall Nessus on Windows 140 Uninstall Nessus on Mac OS X 141 Copyright © 2021 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trade- marks of Tenable,Inc. Tenable.sc, Tenable.ot, Lumin, Indegy, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective Remove Nessus as a Docker Container 142 Remove Nessus Agent 143 Uninstall a Nessus Agent on Linux 144 Uninstall a Nessus Agent on Windows 146 Uninstall a Nessus Agent on Mac OS X 148 Scans 149 Scan and Policy Templates 150 Agent Templates 153 Scan and Policy Settings 155 Basic Settings for Scans 157 Scan Targets 163 Basic Settings for Policies 166 Discovery Scan Settings 168 Preconfigured Discovery Scan Settings 178 Assessment Scan Settings 197 Preconfigured Assessment Scan Settings 214 Report Scan Settings 223 Advanced Scan Settings 225 Preconfigured Advanced Scan Settings 231 Credentials 238 Cloud Services 240 Database Credentials 244 Database Credentials Authentication Types 250 Host 264 Copyright © 2021 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trade- marks of Tenable,Inc. Tenable.sc, Tenable.ot, Lumin, Indegy, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective SNMPv3 265 SSH 267 Windows 282 Miscellaneous 296 Mobile 301 Patch Management 304 Plaintext Authentication 313 Compliance 318 SCAP Settings 321 Plugins 323 Configure Dynamic Plugins 324 Special Use Templates 326 Unofficial PCI ASV Validation Scan 329 Create and Manage Scans 331 Example: Host Discovery 332 Create a Scan 334 Import a Scan 335 Create an Agent Scan 336 Modify Scan Settings 337 Configure an Audit Trail 338 Launch a Scan 339 Stop a Running Scan 340 Delete a Scan 341 Scan Results 342 Copyright © 2021 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trade- marks of Tenable,Inc. Tenable.sc, Tenable.ot, Lumin, Indegy, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective Severity 343 CVSS Scores vs. VPR 344 Configure Your Default Severity Base 348 Configure Severity Base for an Individual Scan 350 Create a New Scan from Scan Results 352 Search and Filter Results 354 Compare Scan Results 361 Dashboard 362 Vulnerabilities 364 View Vulnerabilities 365 Modify a Vulnerability 366 Group Vulnerabilities 367 Snooze a Vulnerability 369 View VPR Top Threats 371 Live Results 373 Enable or Disable Live Results 375 Remove Live Results 376 Scan Exports and Reports 377 Export a Scan 379 Create a Scan Report 380 Customize Report Title and Logo 384 Scan Folders 385 Manage Scan Folders 387 Policies 389 Copyright © 2021 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trade- marks of Tenable,Inc. Tenable.sc, Tenable.ot, Lumin, Indegy, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective Create a Policy 391 Import a Policy 392 Modify Policy Settings 393 Delete a Policy 394 About Nessus Plugins 395 Create a Limited Plugin Policy 397 Install Plugins Manually 401 Plugin Rules 403 Create a Plugin Rule 404 Modify a Plugin Rule 405 Delete a Plugin Rule 406 Sensors 407 Agents 408 Modify Agent Settings 410 System-wide Agent Settings 411 Modify Remote Agent Settings 412 Filter Agents 413 Export Agents 415 Download Linked Agent Logs 416 Unlink an Agent 418 Agent Groups 420 Create a New Agent Group 421 Configure User Permissions for an Agent Group 422 Modify an Agent Group 424 Copyright © 2021 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trade- marks of Tenable,Inc. Tenable.sc, Tenable.ot, Lumin, Indegy, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective Delete an Agent Group 426 Freeze Windows 427 Create a Freeze Window 428 Modify a Freeze Window 429 Delete a Freeze Window 430 Modify Global Freeze Window Settings 431 Clustering 432 Clustering System Requirements 434 Enable Clustering 436 Migrate Agents to a Cluster 437 Manage Nodes 439 Get Linking Key from Parent Node 440 Link a Node 441 View or Edit a Node 444 Enable or Disable a Node 446 Rebalance Nodes 447 Delete a Node 448 Cluster Groups 449 Create a Cluster Group 450 Add a Node to a Cluster Group 451 Add an Agent to a Cluster Group 453 Move an Agent to a Cluster Group 455 Move a Node to a Cluster Group 457 Modify a Cluster Group 459 Copyright © 2021 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trade- marks of Tenable,Inc. Tenable.sc, Tenable.ot, Lumin, Indegy, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective Delete a Cluster Group 460 Scanners 461 Link Nessus Scanner 462 Unlink Nessus Scanner 463 Enable or Disable a Scanner 464 Remove a Scanner 465 Download Managed Scanner Logs 466 Settings 468 About 469 Set an Encryption Password 471 Advanced Settings 473 Create a New Setting 509 Modify a Setting 510 Delete a Setting 511 LDAP Server 512 Configure an LDAP Server 513 Proxy Server 514 Configure a Proxy Server 515 Remote Link 516 SMTP Server 519 Configure an SMTP Server 520 Custom CA 521 Upgrade Assistant 522 Password Management 523 Copyright © 2021 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trade- marks of Tenable,Inc. Tenable.sc, Tenable.ot, Lumin, Indegy, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective Configure Password Management 525 Scanner Health 526 Monitor Scanner Health 529 Notifications 530 Acknowledge Notifications 531 View Notifications 532 Accounts 533 My Account 534 Modify Your User Account 535 Generate an API Key 536 Users 537 Create a User Account 538 Modify a User Account 539 Delete a User Account 540 Transfer User Data 541 Download Logs 542 Additional Resources 543 Agent Software Footprint 544 Agent Host System Utilization 545 Amazon Web Services 546 Command Line Operations 547 Start or Stop Nessus 548 Start or Stop a Nessus Agent 550 Nessus-Service 552 Copyright © 2021 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trade- marks of Tenable,Inc. Tenable.sc, Tenable.ot, Lumin, Indegy, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc.