Tenable vCenter Integration: Report Active and Inactive...

Hi Harry,

I've been away but now I'm back I see that we now have this option, so I guess it was just a delay in the rollout.

However, I note that it is set to 'off' on my existing credentials saved in scans, not on by default as your post suggests. Thought I would bring that to your attention.

Regards,

Adam.

Hi Harry, to add to this - we found that the toggle was set to 'on' in the saved credentials page, but not when we viewed the credentials from the scan configuration page. So, we assumed that this functionality would be disabled for our existing scans and turned all the toggles to 'on' on each credential to make sure we have consistency in our scan output.

Hi Adam,

Thank you again for bringing this to our attention, and providing us with your observations.

The behavior prior to introducing the new toggle is the same as the behavior when the switch is toggled "on". The intention is to provide the ability to opt out of additional data collection by turning off the toggle, but to leave it "on" by default.

However, we have confirmed that there was a issue rolling out this change, and that existing credentials within the scan configurations may not have the switch "on" by default like we intended. We have updated this highlight accordingly, as affected customers may want to ensure the value is set to their preference.

Please note that this behavior change does not affect vulnerability findings other than the active and inactive VM reports, which are informational level plugins and do not pertain to exploitable vulnerabilities. We apologize for the inconvenience.

Hi Harry, thank you for your candour on this matter. Much appreciated.