|
|
@@ -1,11 +1,20 @@
|
|
|
# Tenable Security Center Notes.md
|
|
|
|
|
|
-## Setup
|
|
|
-See https://community.tenable.com/s/article/SSH-Public-Key-Authentication. The private key for svc-scan is not in Vault because if you lose/need it, just generate a new one and push it out.
|
|
|
|
|
|
+## Service
|
|
|
+`systemctl status SecurityCenter`
|
|
|
+
|
|
|
+## Log location
|
|
|
+/opt/sc/admin/logs
|
|
|
+/opt/sc/support/logs
|
|
|
+
|
|
|
+## General Setup
|
|
|
+
|
|
|
+### svc-scan
|
|
|
+See https://community.tenable.com/s/article/SSH-Public-Key-Authentication. The private key for svc-scan is not in Vault because if you lose/need it, just generate a new one and push it out.
|
|
|
|
|
|
|
|
|
-## Add Custom CAs
|
|
|
+### Add Custom CAs
|
|
|
|
|
|
See https://community.tenable.com/s/article/Upload-a-Custom-CA-certificate-custom-CA-inc-to-Tenable-sc-Formerly-SecurityCenter
|
|
|
|
|
|
@@ -119,7 +128,18 @@ Create a compressed tar archive of the 2 files: (Note: Applications such as 7-Zi
|
|
|
|
|
|
# Tenable Nessus Manager Notes
|
|
|
|
|
|
-Use admin creds
|
|
|
+Nessus manager is just a Nessus installation that includes the agent handler.
|
|
|
+
|
|
|
+## setup
|
|
|
+`systemctl status nessusd`
|
|
|
+
|
|
|
+Use admin user to login ( shared cred in Vault )
|
|
|
+
|
|
|
+## Agent setup
|
|
|
+
|
|
|
+`systemctl status nessusagent`
|
|
|
+
|
|
|
+The agent key is generated and viewable in the Nessus Manager.
|
|
|
|
|
|
Scans are run and then sent to SC. The Agent Synchronization Job on SC syncs the plugins and other data. The Agent scans syncs the scan data. Is this correct?
|
|
|
|
Brad Poulton