Prelude SCM creates an aggregate device inventory from all control integrations and uses this data to evaluate the control state and health of each integration. In the case of Tenable Vulnerability Management, there are 5 control failure conditions:
- Missing Vulnerability Management Agent (any) - This condition is measured across all vulnerability management integrations and indicates the count and list of devices that do not have a vulnerability mangement agent installed. If you are using a single vulnerability management tool, this indicates the list of systems missing Tenable (Nessus) agent.
- Missing Vulnerability Management Scan (any) - This condition is measured across all vulnerability management integrations and indicates the count and list of devices that do not have any authenticated scan records (authenticated or agent).
- Tenable - Missing Vulnerability Management Agent - This condition is specific to Tenable and indicates any devices that are known to Tenable that do not have the Tenable (Nessus) agent installed.
- Tenable - Missing Vulnerability Management Scan - This condition is specific to Tenable and indicates any devices that are known to Tenable that do not have a scan record (authenticated or agent)
- Tenable - Out of date vulnerability scan - This condition is specific to Tenable and indicates any devices that are known to Tenable that have a valid scan record that is more than 14 days old.