Update allowed IP addresses

put

https://cloud.tenable.com/access-control/v1/api-security-settings

Adds IP addresses or updates the existing list of IP addresses allowed to access the Tenable Vulnerability Management API.

Caution: Unless your network assignments are restricted to only IPv4 addresses or only IPv6 addresses, you must specify allowed ranges for both IPv4 and IPv6 in order to avoid blocking some API traffic. It is not always predictable whether a client will connect via IPv4 or IPv6.

Requires the Administrator [64] user role. See Roles.

Body Params

allowed_ipv4_addresses

string

A comma-separated list of IPv4 addresses to allow. The list can include discrete IPv4 addresses, IPv4 address ranges, and IPv4 subnets. For example, "192.0.2.0, 198.51.100.4-198.51.100.10, 203.0.113.0/24".

If an empty string is provided then the API can be accessed from all IPv4 addresses.

Caution: Ensure that you have reviewed the list of allowed IPv4 addresses before submission since inappropriate IPv4 address restrictions can result in users being locked out from API access. If this occurs, an administrator can log in to the Vulnerability Management user interface and update the list of allowed IPv4 addresses in the access control settings. For more information, see API Access Security in the Tenable Vulnerability Management User Guide.

allowed_ipv6_addresses

string

A comma-separated list of IPv6 addresses to allow. The list can include discrete IPv6 addresses, IPv6 address ranges, and IPv6 subnets. For example, "2001:db8:2e92:75f2:d40a:e290:10b3:c0f, 2001:db8:1e1f:46a1:e3cb:2110:22c6:0000-2001:db8:1e1f:46a1:e3cb:2110:22c6:ffff, 2001:0DB8::/32".

If an empty string is provided then the API can be accessed from all IPv6 addresses.

Caution: Ensure that you have reviewed the list of allowed IPv6 addresses before submission since inappropriate IPv6 address restrictions can result in users being locked out from API access. If this occurs, an administrator can log in to the Vulnerability Management user interface and update the list of allowed IPv6 addresses in the access control settings. For more information, see API Access Security in the Tenable Vulnerability Management User Guide.

Headers

string

enum

Defaults to application/json

Generated from available response content types

Allowed:

Responses

400

Returned if your request specified invalid parameters, if your request was improperly formatted, or if the current client IP address is not included.

401

Returned if your API credentials are invalid or if your origin IP address is not allowed.

403

Returned if you do not have permission to add or update the list of allowed IP addresses.

204Returned if Tenable Vulnerability Management added or updated the allowed IP addresses.

429Returned if you attempt to send too many requests in a specific period of time. For more information, see Rate Limiting.

500Returned if an internal error occurred in Tenable Vulnerability Management.