Set up Tenable for Integration

Table of Contents

Set up IoT Security and XSOAR for Tenable Integration

Set up Tenable for integration with IoT Security through Cortex XSOAR.

Where Can I Use This?	What Do I Need?
IoT Security (Managed by IoT Security)	IoT Security subscription for an advanced IoT Security product (Enterprise Plus, Industrial OT, or Medical) One of the following Cortex XSOAR setups: An IoT Security Third-party Integration Add-on license that includes a cohosted, limited-featured Cortex XSOAR instance A full-featured Cortex XSOAR server

It’s assumed that you’ve already installed a Tenable Nessus vulnerability scanner on your network so that it can reach the hosts you intend to scan, made a Tenable.io account, and associated the scanner with your account.

After completing those steps, you must generate two API keys that will allow Cortex XSOAR to access the Tenable API and then copy and paste them into your XSOAR integration instance configuration.

Generate two API keys.
1. Log in to your Tenable.io account.
2. To generate the two API keys you need, click SettingsMy AccountAPI KeysGenerate.
  A warning appears that explains how generating API keys will invalidate any existing keys and unauthorize applications currently using them.
3. To continue, click Generate.
  The two API keys appear on the page:
  Access Key: This key authenticates Cortex XSOAR and Tenable.io to each other and permits XSOAR to access Tenable API resources.
  Secret Key: This key encrypts and decrypts communications between Tenable.io and Cortex XSOAR.
Record the two API keys.

Because Tenable only displays the keys immediately after generating them, do not navigate away from this page until you have copied the text strings for both keys, pasted them into a text file, and saved the file in a secure location. You will enter these when configuring the Tenable integration instance in Cortex XSOAR.