PCI ASV: List Attestation Assets

A new endpoint has been added to the Tenable PCI ASV API to allow customers to retrieve a list of assets identified in a specified PCI attestation. You can specify the attestation you want to retrieve the assets for via the attestation_uuid path parameter. For more information about PCI ASV, see Get Started with PCI ASV Scanning in the Tenable Vulnerability Management User Guide.

The new endpoint is described in the following table:

GET /pci-asv/attestations/{attestation_uuid}/assets/listList attestation assetsReturns a list of PCI assets attested in the specified attestation.



You need to request access to this endpoint through Tenable support even if you have a valid PCI ASV license.


For example, to list assets for an attestation with a UUID of c1c7498a-5ed4-45c5-b58d-90d2b90befb2 in descending order by fqdn, you could use the following cURL request:

curl --request GET \
     --url '' \
     --header 'X-ApiKeys: accessKey=<YOURKEY>;secretKey=<YOURKEY>' \
     --header 'accept: application/json'