Ansible role for installing and configuring Nessus Agent
| Variable | Description |
|---|---|
nessus_agent_key |
key used for linking with nessus host (this is a required variable) |
nessus_agent_group |
host group this agent should be added to when linking with nessus host (this is a required variable) |
nessus_agent_host |
nessus host to link with (default: cloud.tenable.com) |
nessus_agent_port |
nessus host port (default: 443) |
nessus_agent_rules |
Object can be used to configure the nessusd.rules file |
nessus_agent_download_url |
Getting the download URL can be a bit tricky, just go to https://www.tenable.com/downloads/nessus-agents and copy the URL, like in the example below. You need also to download the file and calculate the md5sum. NOTE: The Link is nt |
nessus_agent_package |
can be either a repository package, path to a file, or a URL (default: NessusAgent) |
NOTE: The Tenable download URLs are not static and they will change so it makes sense to upload the package to some save spot.
You can also use my Backblaze B2 bucket that I'm use in the molecule tests, for example (molecule/default/converge-apt.yml).
None.
- hosts: all
vars:
nessus_agent_key: xxxxxxxxx
nessus_agent_file_checksum: "md5:3eeee6531c7822ac7fe374cc28d74779"
nessus_agent_download_url: "https://www.tenable.com/downloads/api/v1/public/pages/nessus-agents/downloads/12176/download?i_agree_to_tenable_license_agreement=true" # NessusAgent-8.2.2-ubuntu1110_amd64.deb
roles:
- role: ansible-role-nessus-agent- hosts: all
vars:
nessus_agent_key: xxxxxxxxx
nessus_agent_group: GCP
nessus_agent_file_checksum: "md5:3eeee6531c7822ac7fe374cc28d74779"
nessus_agent_download_url: "https://www.tenable.com/downloads/api/v1/public/pages/nessus-agents/downloads/12176/download?i_agree_to_tenable_license_agreement=true" # NessusAgent-8.2.2-ubuntu1110_amd64.deb
nessus_agent_rules:
default: accept
plugin_reject:
- 33851
roles:
- role: ansible-role-nessus-agent