Tenable.io

Enterprise

Rumble integrates with Tenable.io by importing data from the Tenable.io API.

Getting started with Tenable.io

To set up the Tenable.io integration, you’ll need to:

  1. Create an Administrator API key in an access group with Can View permission to Manage Assets.
  2. Add the Tenable.io API access and secret keys in Rumble.
  3. Activate the Tenable.io connection to pull your data into Rumble.

Requirements

Before you can set up the Tenable.io integration:

  • Verify that you have Rumble Enterprise.
  • Make sure you have administrator access to the Tenable.io portal.

Step 1: Create an Administrator API key

  1. Log in to Tenable.io with the Administrator account being used for the Rumble integration.
  2. Go to My Profile > My Account > API Keys.
  3. Generate the API token, then download or copy it.

Step 2: Add the Tenable.io credential to Rumble

  1. Go to the Credentials page in Rumble. Provide a name for the credentials, like Tenable.io.
  2. Choose Tenable Access & Secret from the list of credential types.
  3. Generate your Tenable access and secret keys via your account page in the Tenable portal, and then provide the following information:
    • Tenable access key - Your 64-character Tenable access key.
    • Tenable secret key - Your 64-character Tenable secret key.
  4. If you want other organizations to be able to use this credential, select the Make this a global credential option. Otherwise, you can configure access on a per-organization basis.
  5. Save the credential. You’re now ready to set up and activate the connection to bring in data from Tenable.io.

Step 3: Set up and activate the Tenable.io connection to sync data

After you add your Tenable.io credential, you’ll need to set up a connection to sync your data from Tenable.io. A connection requires you to set a schedule and choose a site. The schedule determines when the sync occurs, and the site determines where any new Tenable.io-only assets are created.

  1. Activate a connection to Tenable.io. You can access all available third-party connections from your inventory or tasks page.
  2. Choose the credentials you added earlier. If you don’t see the credentials listed, make sure the credentials have access to the organization you are currently in.
  3. Enter a name for the task, like Tenable.io sync.
  4. Schedule the sync. A sync can be set to run on a recurring schedule or run once. The schedule will start on the date and time you have set.
  5. Under Task configuration:
  6. Activate the connection when you are done. The sync will run on the defined schedule. You can always check the Scheduled tasks to see when the next sync will occur.

Step 4: View Tenable.io assets and vulnerabilities

After a successful sync, you can go to your inventory to view your Tenable.io assets. These assets will have a Tenable icon listed in the Source column.

The Tenable.io integration gathers details about vulnerabilities detected in addition to enriching asset inventory data. Go to Inventory > Vulnerabilities to view the vulnerability data provided by Tenable.io.

To filter by Tenable assets, consider running the following queries:

Click into each asset to see its individual attributes. Rumble will show you the attributes gathered from the Tenable scan data.