Summary
We are proud to announce that Tenable customers can now use Kerberos Target Authentication with our Privilege Access Manager (PAM) Integrations. Support for this method of target authentication was previously only available for our CyberArk, Hashicorp Vault, Windows, and SSH based credentials. We have now broadened this capability to encompass all PAMs documented below.

Scope
Customers will see a new option called ‘Kerberos Target Authentication’ in the credential field for each PAM. By default, the ‘Kerberos Target Authentication’ option is disabled. If enabled, customers will see four additional fields for configuring kerberos.

Supported PAM Integrations in This Release:

• Arcon
• BeyondTrust Password Safe
• Delinea Secret Server
• Fudo
• QiAnXin
• Senhasegura
• WALLIX Bastion

Impact
This has no impact on credentials configured prior to the release of this feature. In addition there are no impacts to existing plugins.

Release Date
6/23/2025 for Nessus and TVM
TBD for Security Center