The asset setup is straightforward for Tenable.SC when using the built-in actions currently available with the connector.

 At the time of the original documentation screenshot, the access key and secret key were not obfuscated in the asset UI. This has since been resolved.

HTTP Connector Asset Setup for Tenable.SC

To configure Tenable.SC using the generic HTTP connector, you need to create a new 

Set the following fields during asset creation:

When configuring actions with the HTTP asset, the following settings are required:

According to Tenable's API guide, the full format is:

However, the port is not required, and HTTPS works if SSL validation is disabled.

To retrieve active plugins, include the following query parameters on the Parameters tab:

This setup successfully returned active plugin data on a test system.

Using the HTTP Connector to Query Vulnerability Data

For a proof-of-value (POV) effort, vulnerability data needed to be pulled from the Tenable.SC dashboard using the analysis endpoint, which is not yet available in the built-in connector. A request has been made to add this (SPT-28099).

In the meantime, you can use the HTTP connector to access this data using the following setup:

This setup successfully returned vulnerability data from the test system.

Tenable SC API Key Authentication

configuration

Add Analysis

Add Group

Add Scan

Download Scan Results

Get Alert

Get Asset

Get Credentials

Get Hosts

Get List Queries

Get Policies

Get Repositories

Get Scan Results

Get Scans

Run Scan

Tenable_SC

Tenable.SC Connector

Tenable Security Center Connector

test12

sdfdssdfsdfsdfsdfdsfsdf

edfsad

dsfsdfsdf

test

specific

var_miha

new_var_2

new_mih_var

mih_var

testheight

available

testulet

testvar

This is a plain text that will be inserted in an expandable heading for using this raw as an exampl

altscenario

This is a plain text that will be inserted in an expandable heading for using this raw as an example

scenario

exemplu

variabila

Archbee

text

refresh_token

YourBank

MyBank

variable_test_video

variable123

silviu

Bogdan_test

ferwhethgte

target1

google

support

product_name

productName1

companyLegalName

programName

customerName1

productName

Product_Name

Test

SEFAS

uptempo

customerName

testName

name1

customername

apilink1-getallmethod

variable_one

capitalize

company_name_adobe

jama_2

jama_1

domain

email

product

Glossary lets you define every tricky term, then gives them a sneak peek explanation on hover... Just like I'm doing with this text right here!

Glossary_feature

Google

aaaa

insitutionAdress

dasdas666

aa112

asdasdas

asdasd

What

New_reusable

test_var2

test_var

Our knowledgeable support team and an awesome community will get you an answer in a flash.

Connectors

Configuration

alien vault threat exchange

Alien Vault Threat Exchange Connector

Atlassian Jira

Atlassian Jira Connector

check point R80

Check Point R80 Connector

splunk

Cisco Splunk Connector

CyberArk

CyberArk Connector

ExtraHop

ExtraHop Connector

Types of fortinet Configurations

Fortinet-Fortigate

Fortinet Fortigate Connector

Google Safe Browsing

Google Safe Browsing Connector

Halopsa

HaloPSA Connector

Invicti Netsparker

Invicti Netsparker Connector

Malware Information Sharing Platform & Threat Sharing

MISP Connector

Microsoft Azure Sentinel Connector

Oauth 2.0 Client Credentials

Microsoft Graph API

Microsoft Graph API Connector

Nozomi Connector

Securonix

Securonix Connector

SentinelOne Connector

ServiceNow

ServiceNow Connector

Symantec_dlp

Symantec DLP Connector

Slack

Slack Connector

Okta

Okta Connector

proofpoint

Proofpoint Connector

Rapid7

Rapid7 InsightIDR V2 Connector

Tanium

Tanium Connector