Forum Discussion
New Audit Attachments: Gold Image, XCCDF, and JSON Summary...
This sounds really exciting! Now the question I have is how will this work in a multi-tier environment?
We have SecurityCenters at multiple sites. Using remote repositories, we pull all the data to our central SecurityCenter for analysis. For now, we've been looking at the compliance plugins and exporting those with the API to import those into checklists.
Will these new plugins transfer over with the compliance files (XCCDF and/or JSON) so we can see them in the central Tenable.SC?
When we were using SCAP to generate XCCDF results, that was only downloadable on the remote TenableSC from the scan results screen. So we scrapped that and decided to use the audit files so we can at least see the configuration scan results in the plugins that were passed to us in remote repositories.
At this time, the capability is in Nessus and Tenable Vulnerability Management. There is requests to get the preferences exposed in Tenable Security Center and how it will work in there.
Will this work with nessus agent ?
Not yet. In progress.
Interesting I see the options available in the Advanced Agent scan policy on the Nessus manager. I tested but I do not get results for the listed plugins.
