Nessus 8.12 User Guide
Total Page:16
File Type:pdf, Size:1020Kb
Nessus 8.12.x User Guide Last Updated: September 24, 2021 Table of Contents Welcome to Nessus 8.12.x 13 Get Started with Nessus 16 Navigate Nessus 18 System Requirements 19 Hardware Requirements 20 Software Requirements 24 Customize SELinux Enforcing Mode Policies 28 Licensing Requirements 29 Deployment Considerations 30 Host-Based Firewalls 31 IPv6 Support 32 Virtual Machines 33 Antivirus Software 34 Security Warnings 35 Certificates and Certificate Authorities 36 Custom SSL Server Certificates 38 Create a New Server Certificate and CA Certificate 40 Upload a Custom Server Certificate and CA Certificate 42 Trust a Custom CA 44 Create SSL Client Certificates for Login 46 Nessus Manager Certificates and Nessus Agent 49 Install Nessus 51 Copyright © 2021 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trade- marks of Tenable,Inc. Tenable.sc, Tenable.ot, Lumin, Indegy, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective Download Nessus 52 Install Nessus 54 Install Nessus on Linux 55 Install Nessus on Windows 57 Install Nessus on Mac OS X 59 Install Nessus Agents 61 Retrieve the Linking Key 62 Install a Nessus Agent on Linux 63 Install a Nessus Agent on Windows 67 Install a Nessus Agent on Mac OS X 73 Link an Agent to Nessus Manager 77 Upgrade Nessus and Nessus Agents 80 Upgrade Nessus 81 Upgrade from Evaluation 82 Update Nessus Software 83 Upgrade Nessus on Linux 86 Upgrade Nessus on Windows 87 Upgrade Nessus on Mac OS X 88 Upgrade a Nessus Agent 89 Downgrade Nessus Software 95 Configure Nessus 97 Install Nessus Essentials, Professional, or Manager 98 Link to Tenable.io 100 Link to Nessus Manager 102 Copyright © 2021 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trade- marks of Tenable,Inc. Tenable.sc, Tenable.ot, Lumin, Indegy, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective Managed by Tenable.sc 104 Manage Activation Code 106 View Activation Code 107 Reset Activation Code 108 Update Activation Code 109 Transfer Activation Code 111 Manage Nessus Offline 113 Install Nessus Offline 115 Generate Challenge Code 118 Generate Your License 119 Download and Copy License File (nessus.license) 120 Register Your License with Nessus 121 Download and Copy Plugins 122 Install Plugins Manually 123 Update Nessus Software Manually on an Offline system 125 Offline Update Page Details 127 Back Up Nessus 128 Restore Nessus 129 Remove Nessus and Nessus Agents 131 Remove Nessus 132 Uninstall Nessus on Linux 133 Uninstall Nessus on Windows 135 Uninstall Nessus on Mac OS X 136 Remove Nessus Agent 137 Copyright © 2021 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trade- marks of Tenable,Inc. Tenable.sc, Tenable.ot, Lumin, Indegy, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective Uninstall a Nessus Agent on Linux 138 Uninstall a Nessus Agent on Windows 140 Uninstall a Nessus Agent on Mac OS X 142 Scans 143 Scan and Policy Templates 144 Agent Templates 147 Scan and Policy Settings 149 Basic Settings for Scans 151 Scan Targets 157 Basic Settings for Policies 160 Discovery Scan Settings 162 Preconfigured Discovery Scan Settings 172 Assessment Scan Settings 191 Preconfigured Assessment Scan Settings 208 Report Scan Settings 217 Advanced Scan Settings 219 Preconfigured Advanced Scan Settings 225 Credentials 232 Cloud Services 234 Database Credentials 238 Database Credentials Authentication Types 244 Host 258 SNMPv3 259 SSH 261 Copyright © 2021 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trade- marks of Tenable,Inc. Tenable.sc, Tenable.ot, Lumin, Indegy, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective Windows 276 Miscellaneous 290 Mobile 295 Patch Management 298 Plaintext Authentication 307 Compliance 312 SCAP Settings 315 Plugins 317 Configure Dynamic Plugins 318 Special Use Templates 320 Unofficial PCI ASV Validation Scan 323 Create and Manage Scans 325 Example: Host Discovery 326 Create a Scan 328 Import a Scan 329 Create an Agent Scan 330 Modify Scan Settings 331 Configure an Audit Trail 332 Launch a Scan 333 Stop a Running Scan 334 Delete a Scan 335 Scan Results 336 Create a New Scan from Scan Results 337 Search and Filter Results 339 Copyright © 2021 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trade- marks of Tenable,Inc. Tenable.sc, Tenable.ot, Lumin, Indegy, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective Compare Scan Results 346 Dashboard 347 Vulnerabilities 349 View Vulnerabilities 350 Modify a Vulnerability 351 Group Vulnerabilities 352 Snooze a Vulnerability 354 Live Results 356 Enable or Disable Live Results 358 Remove Live Results 359 Scan Exports and Reports 360 Export a Scan 362 Create a Scan Report 363 Customize Report Title and Logo 367 Scan Folders 368 Manage Scan Folders 370 Policies 372 Create a Policy 374 Import a Policy 375 Modify Policy Settings 376 Delete a Policy 377 About Nessus Plugins 378 Create a Limited Plugin Policy 380 Install Plugins Manually 384 Copyright © 2021 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trade- marks of Tenable,Inc. Tenable.sc, Tenable.ot, Lumin, Indegy, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective Plugin Rules 386 Create a Plugin Rule 387 Modify a Plugin Rule 388 Delete a Plugin Rule 389 Sensors 390 Agents 391 Modify Agent Settings 393 System-wide Agent Settings 394 Filter Agents 395 Export Agents 397 Download Linked Agent Logs 398 Unlink an Agent 400 Agent Groups 402 Create a New Agent Group 403 Configure User Permissions for an Agent Group 404 Modify an Agent Group 406 Delete an Agent Group 408 Freeze Windows 409 Create a Blackout Window 410 Modify a Blackout Window 411 Delete a Blackout Window 412 Modify Global Blackout Window Settings 413 Clustering 414 Clustering System Requirements 416 Copyright © 2021 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trade- marks of Tenable,Inc. Tenable.sc, Tenable.ot, Lumin, Indegy, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective Enable Clustering 418 Migrate Agents to a Cluster 419 Manage Nodes 421 Get Linking Key from Parent Node 422 Link a Node 423 View or Edit a Node 426 Enable or Disable a Node 428 Rebalance Nodes 429 Delete a Node 430 Cluster Groups 431 Create a Cluster Group 432 Add a Node to a Cluster Group 433 Add an Agent to a Cluster Group 435 Move an Agent to a Cluster Group 437 Move a Node to a Cluster Group 439 Modify a Cluster Group 441 Delete a Cluster Group 442 Scanners 443 Link Nessus Scanner 444 Unlink Nessus Scanner 445 Enable or Disable a Scanner 446 Remove a Scanner 447 Download Managed Scanner Logs 448 Settings 450 Copyright © 2021 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trade- marks of Tenable,Inc. Tenable.sc, Tenable.ot, Lumin, Indegy, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective About 451 Set an Encryption Password 453 Advanced Settings 454 Create a New Setting 489 Modify a Setting 490 Delete a Setting 491 LDAP Server 492 Configure an LDAP Server 493 Proxy Server 494 Configure a Proxy Server 495 Remote Link 496 SMTP Server 499 Configure an SMTP Server 500 Custom CA 501 Upgrade Assistant 502 Password Management 503 Configure Password Management 505 Scanner Health 506 Monitor Scanner Health 509 Notifications 510 Acknowledge Notifications 511 View Notifications 512 Accounts 513 My Account 514 Copyright © 2021 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trade- marks of Tenable,Inc. Tenable.sc, Tenable.ot, Lumin, Indegy, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective Modify Your User Account 515 Generate an API Key 516 Users 517 Create a User Account 518 Modify a User Account 519 Delete a User Account 520 Transfer User Data 521 Download Logs 522 Additional Resources 523 Agent Software Footprint 524 Agent Host System Utilization 525 Amazon Web Services 526 Configure Nessus