Common severity and retrieval settings and filters for Tenable.io, Tenable.sc and Tenable.cs in your ServiceNow AI Platform instance

The following settings are available for the Tenable.io, Tenable.sc, and Tenable.cs integrations in your ServiceNow AI Platform instance. These and other configuration settings are displayed on the Integration Instance page of your ServiceNow AI Platform instance. You may prefer to leave these settings in their defaults for the first few integration runs.

Tenable.io

insert_fixed

If you enable the insert_fixed flag in Setup Assistant for the Vulnerabilities Import integration, new VIs are created for detections in the Fixed state that don’t exist in your instance.

severity_critical

This filter is enabled by default (true) to receive critical severity Vulnerabilities from the Tenable.io Open Vulnerabilities and Tenable.io Fixed Vulnerabilities Integrations.

severity_high

This filter is enabled by default (true) to receive high-level severity Vulnerabilities from the Tenable.io Open Vulnerabilities and Tenable.io Fixed Vulnerabilities Integrations.

severity_medium

This filter is inactive by default (false). Enable this filter to receive medium-level severity Vulnerabilities from the Tenable.io Open Vulnerabilities and Tenable.io Fixed Vulnerabilities Integrations.

severity_info

This filter is inactive by default (false). Enable this filter to receive info-level severity Vulnerabilities from the Tenable.io Open Vulnerabilities and Tenable.io Fixed Vulnerabilities Integrations.

severity_low

This filter is inactive by default (false). Enable this filter to receive low-level severity Vulnerabilities from the Tenable.io Open Vulnerabilities and Tenable.io Fixed Vulnerabilities Integrations.

size

This setting defines the number of plugin records to include in the result set from the Tenable.io Plugins Integration. Must be in the int32 format. The default value is 1,000. The maximum size is 10,000.

num_assets

The maximum number of vulnerabilities per exported chunk from the Tenable.io Fixed Vulnerabilities and Tenable.io Open Vulnerabilities Integrations. The default value is 50.

chunk_size

Specifies the number of assets per exported chunk by the Tenable.io Assets Integration. The default is 1,000.

Tenable.sc

async_request

This parameter is inactive by default (false). Enable or disable this parameter to make asynchronous or synchronous API calls with Tenable.sc respectively. For synchronous calls, if there’s a timeout at 30 seconds, contact support for the Tenable product to tune the box. This parameter once enabled is applicable for all the integrations of Tenable.sc. For existing customers using asynchronous calls, a fix script is available, which adds a new async_request parameter to the existing Tenable.sc integration instances. To view the fix scripts, navigate to System Definition > Fix Scripts.

insert_fixed

If you enable the insert_fixed flag in Setup Assistant for the Vulnerabilities Import integration, new VIs are created fordetections in the Fixed state that don’t exist in your instance.

offset

Specifies the number of assets, plugins, and vulnerabilities imported in one integration run.

Query filters

Query filters are configured from within the Tenable console. These query filters have IDs that can be selected from Setup Assistant or from the Integration Instances page in your ServiceNow AI Platform instance. These filters are applied while retrieving the data from the Tenable.sc integrations.