Vulnerability Management: Continuous Assessment Scanning
Documentation is now available for new body parameters and response properties added to the Tenable Vulnerability Management API to support continuous assessment scanning. Continuous assessment scanning is a scanning method that Tenable Vulnerability Management can perform through linked Tenable Nessus Agents. It provides continuous monitoring and reporting of software inventory changes on your hosts.
Note
Continuous assessment scanning is currently only available for agents installed on Linux hosts. Agents that have NIAP mode enforced cannot perform continuous assessment scanning.
For more information about continuous assessment scanning, see Continuous Assessment Scanning and Agent Profiles in the Tenable Vulnerability Management User Guide.
The new body parameters and response properties enable customers to configure continuous assessment scanning when creating or updating an agent profile and view continuous assessment scanning configurations when retrieving the details of agent profiles, agent groups, and agents.
The endpoint updates are described in the following table:
| Endpoint | Name | Update |
|---|---|---|
| POST /sensors/profiles/{sensor_type} | Create profile | Added the new com.tenable.fredi_module body parameter.The com.tenable.fredi_module body parameter enables users to add and configure continuous assessment scanning when creating an agent profile. |
| GET /sensors/profiles/{sensor_type} | List profiles | Added the com.tenable.fredi_module and com.tenable.tua_comm_module modules objects to the response body.com.tenable.fredi_module indicates whether continuous assessment scanning is enabled for the profile and what the baseline scan frequency is. com.tenable.tua_comm_module is a module that is automatically enabled on the backend, and ensures that continuous assessment scanning data is properly sent from agents to Tenable Vulnerability Management. |
| GET /sensors/profiles/{sensor_type}/{profile_uuid} | Get profile details | Added the com.tenable.fredi_module and com.tenable.tua_comm_module modules objects to the response body.com.tenable.fredi_module indicates whether continuous assessment scanning is enabled for the profile and what the baseline scan frequency is. com.tenable.tua_comm_module is a module that is automatically enabled on the backend, and ensures that continuous assessment scanning data is properly sent from agents to Tenable Vulnerability Management. |
| PUT /sensors/profiles/{sensor_type}/{profile_uuid} | Update profile | Added the new com.tenable.fredi_module body parameter.The com.tenable.fredi_module body parameter enables users to add and configure continuous assessment scanning when creating an agent profile. |
| GET /scanners/null/agents | List agents | Added the boolean fredi_status response property. fredi_status indicates whether continuous assessment scanning is enabled for the agent. |
| GET /scanners/null/agent-groups/{agent_group_id}/agents | List agents by group | Added the boolean fredi_status response property. fredi_status indicates whether continuous assessment scanning is enabled for the agent. |
| GET /scanners/null/agents/{agent_id} | Get agent details | Added the boolean fredi_status response property. fredi_status indicates whether continuous assessment scanning is enabled for the agent. |
| GET /scanners/null/agent-groups/{group_id} | Get agent group details | Added the boolean fredi_status response property. fredi_status indicates whether continuous assessment scanning is enabled for the agent. |