Ready for
a Demo
View Categories

Tenable OT Security

What is Tenable OT? #

The Tenable OT (formerly previously Indegy Industrial Cybersecurity Suite) protects industrial networks from cyber threats, malicious insiders, and human error. Tenable OT includes threat detection and mitigation, asset tracking, vulnerability management, configuration control, and Active Query checks.

Why Should You Use the Tenable OT Connector? #

The Tenable OT connector provides visibility into the assets in your environment. You can use this visibility to:

  • ensure assets are managed per your security policies

  • derive relationships between assets, users, and data

How Does This Connector Work? #

Lucidum executes read-only requests to the Tenable OT REST API and ingests only meta-data about Tenable OT devices. Lucidum does not retrieve any data stored on your assets.

Configuring the Connector in Lucidum #

Field

Description

Example

URL

The URL for the Tenable OT API.

http://ip_address:port_number/imcrs
https://ip_address:port_number/imcr.

Robot Name

Logical name for the robot.

Private Key File

Upload the private key file, key.pem

key.pm

Certificate File

Upload the public key file, cert.pem

cert.pem

Verify SSL.

For future use.

N/A

Source Documentation #

Creating Credentials #

Contact your Lucidum Sales Representative for help with creating credentials.

https://docs.tenable.com/OT-security.htm

The Indegy API Robots endpoint is used to facilitate the authentication and authorization process through the use of TLC Client Certificate. Instead of managing complicated tokens and sessions, Indegy enables the creation of a “Robot” user that serves as an intermediary, while supporting the use of TLC certificates as the authentication method for API calls.

To create a private key, a public (cert) key, and a “robot” user, do as follows:

  1. Obtain a Token from Indegy Support.

  2. Connect to your Indegy domain and run the following command to create a cert and private key.
    For example: openssl req -x509 -newkey rsa:2048 -keyout key.pem -out cert.pem -days 365 -nodes

  3. Save the generated files: the private key (key.pem) and the public key (cert.pem).

  4. Issue a Robots (POST) API call with the body and token as specified below. For example, curl -k -H 'Authorization: Bearer <TOKEN>' -XPOST https://<IP>/v1/robots --data '{"name": "robot1", "role": "AdminRole","cert": "<CERT>"}'. In the request, specify the following mandatory parameters:

    • IP – The IP of your Indegy domain. Replace < IP > in the script below.

    • Token – The token you have obtained from Indegy support. Replace < TOKEN > in the script below.

    • Name (string) – A logical name for the robot (“robot1” in the example script below).

    • Role (string) – The type of user role that is being created: “AdminRole” or “ReaderRole” (“AdminRole” in the example script below).

    • Cert – The content of your cert.pem file. Use “\n” to reflect new rows. Replace < CERT> in the script below.

Required Permissions #

Contact your Lucidum Sales Representative for help with permissions.

API Documentation #

https://pytenable.readthedocs.io/en/stable/api/ot/index.html

https://pytenable.readthedocs.io/en/stable/api/ot/assets.html

https://github.com/tenable/pyTenable

What are your Feelings

Quick LInks

Linkedin Youtube X-twitter Facebook

@ 2024 Lucidum, Inc. 2024, Design By Sandman Studios

SOLUTIONS

COMPANY

RESOURCES

Solutions

COMPANY

Resource Library