Concurrency Limiting

There are maximum limits for concurrent export requests. Tenable applies these limits on concurrent exports to ensure that all customers experience the same level of service. You can have a maximum of ten or three active concurrent export requests per customer instance or container depending on which endpoint you are using. Additionally, there is a maximum limit for concurrent scans. You can have a maximum of 25 active scans per customer instance or container.

If you submit an API request after you reach the concurrency limit, Tenable returns an HTTP response message with a 429 (Too Many Requests) status code. The response also includes a retry-after header element that specifies the number of seconds to wait before retrying.

Contact your Tenable representative if you have further questions regarding concurrent exports or concurrent scans.

Example Response Header

connection:keep-alive 
content-length:580 
content-type:text/html
date:Wed, 24 Oct 2018 17:13:43 GMT 
retry-after:30 
server:tenable.io
strict-transport-security:max-age=63072000; includeSubDomains
x-content-type-options:nosniff
x-gateway-site-id:nginx-router-b-eng-us-east-1.dcld
x-path-handler:tenable-io-plugins-plugin

Concurrent Export Limits

The following table outlines the concurrency limits for export endpoints.

Limit	Affected Endpoints
10 concurrent exports per container. Tenable also prevents duplicate exports from running concurrently. For example, export requests with the same filters.	Vulnerability Management: Export vulnerabilities Export assets v1 Export assets v2 Export compliance data Export workbench Tenable One: Export assets Export findings
3 concurrent requests per customer instance. Note: This limit is subject to change.	Vulnerability Management: List plugin outputs List asset vulnerabilities for plugin Get scan details Get host details Get plugin output

Limit

Affected Endpoints

10 concurrent exports per container. Tenable also prevents duplicate exports from running concurrently. For example, export requests with the same filters.

Vulnerability Management:

Tenable One:

3 concurrent requests per customer instance.

Note: This limit is subject to change.

Vulnerability Management:

Concurrent Active Scan and Scan Processing Limits

The following table outlines the concurrency limit for active scans and scan processing. An active scan is defined as any Vulnerability Management or web application scan not in a completed, stopped, empty, imported, aborted, or canceled status. For a full list of scan statuses, see Scan Status. Additionally, this limit includes the processing of agent scan data.

Limit	Affected Endpoint
25 active scans (including agent processing) per container. Note: To get the count of active scans in your container, use the Get scan count endpoint with the query parameter `active` set to `true`.	Launch scan
Scan chunks exceeding 10,000 hosts, 150,000 findings, or 7 GB in total size. If a scan chunk exceeds any of the maximum values, the scan is not processed and scan iseventually aborted.	Launch scan Import uploaded scan

Concurrent Report Limits

The following table outlines the concurrency limits for report endpoints.

Limit	Affected Endpoints
50 concurrent reports per user.	Create report