ESXi Version Information from vCenter REST API

Summary

We are proud to announce to our Tenable customers our latest integration enhancement with the ability to gather ESXi host version information from the vCenter REST API. This feature is available when using the VMware vCenter integration credential and the customer's vCenter/ESXi version is 7.0.3 or higher. 

This feature was developed for customers with ESXi hosts that are managed by a vCenter, but are not routable by the Nessus scanner on their network. Customer’s vCenter/ESXi environments may be configured as such where the ESXi hosts are not routable by the scanner for various reasons (ex. do not allow incoming connections, firewall rules, etc…). We now have the capability to get ESXi version information directly from the vCenter host REST API.

Credential Configuration Considerations 

Customers will not see any changes to the VMware vCenter credential. However, customers will need to enable Auto-Discovery of ESXi hosts to take advantage of this feature. When the ESXi host is automatically added to the scan using Auto-Discovery of ESXi hosts, Tenable determines if the scanner can communicate with the host. If not, Tenable will allow the host to be scanned and therefore vulnerability detections will run, at the very least based on the ESXi version information collected.

Release Date

March 25, 2024 - TVM, Nessus, and Security Center