Manualshelf

Installation guide

ManualsBrandsAbit ManualsComputer equipmentLicense Scanner
61626364656667686970
61
example, if the Max Hosts Per Scan is set to 5 and there are five scanners per zone,
each scanner will accept five hosts to scan, allowing a total of 25 hosts to be scanned
between the five scanners.
Max Scan Time in hours
This setting limits the length of time a scan is allowed to run. If a scan reaches this
limit, the unscanned targets are captured in a new “rollover” scan that can be run
manually or scheduled at a later time.
Max TCP Connections
This setting limits the maximum number of TCP sessions established by any of the
active scanners while scanning a single host.
Audit Files
The Audit Files tab contains two options related to Nessus compliance scans. Note that you must at least name the scan
from the “Basic” frame to be able to open the “Audit Files” tab.
Table 23 Audit File Options
Option
Description
Select Audit File
Tenable provides a variety of .audit files that provide a template check for
compliance audits against various established standards, such as the Center for
Internet Security (CIS) benchmarks, healthcare industry standards (HIPAA), Payment
Card Industry (PCI) requirements, and many more. To perform a compliance check,
you must have the ability to perform authenticated Unix/Linux and/or Windows local
checks.
Perform PCI DSS Analysis
The Payment Card Industry Data Security Standard (PCI DSS) is a comprehensive set
of security standards established by the founding members of the PCI Security
Standards Council, including Visa, American Express, Discover Financial Services,
and MasterCard. The PCI DSS is intended to provide a common baseline to safeguard
sensitive cardholder data for all bankcard brands and is in use by many e-commerce
vendors who accept and store credit card data.
Tenable provides three plugins to all SecurityCenter users that automate the process
of performing a PCI DSS audit. These plugins are:
PCI DSS compliance: tests requirements
PCI DSS compliance: passed
PCI DSS compliance
These plugins evaluate the results of your scan and the actual configuration of your
scan to determine if the target server is PCI compliant. The plugins do not perform
actual scanning; they just look at the results from other plugins.
To activate the PCI DSS plugins, simply check the box labeled “Perform PCI DSS
Analysis” from the “Compliance” screen.
It is important to note that a secure infrastructure is achieved through a
fusion of people, processes, and technology. Tenable’s solutions provide
the technology to aid in compliance requirements and are intended to be
used in conjunction with a comprehensive security strategy. Please
consult with your organization’s Audit and Compliance group for
guidance and directives specific to your organization.