🚨 IMPORTANT 🚨
For each agent that you install, you must have a license available; if you don't, the machine(s) won't show up on your targets page. (eg. If you're installing the agent onto 10 machines, you must have 10 licenses available.)
For group deployment, have a read of this article.
Step 1: Download the agent installer (but don't launch it)
Head to the Nessus agent download page: https://www.tenable.com/downloads/nessus-agents
Search for the relevant .msi installer file:
Newer version of Windows: NessusAgent-X.X.X-x64.msiOlder version of Windows: NessusAgent-X.X.X-Win32.msi
Download the installer but do not run the installer!
Make a note of the path to the installer .MSI file.
(If this was downloaded from a browser, hit the dropdown button and click 'Show in folder'. You'll then be able to copy the path.)
Step 2: Calculate the NESSUS_NAME
Open the Targets page > Add Targets > Internal targets
Click 'View configuration keys'
Copy the 'Prefix'
Your NESSUS_NAME is comprised of your Prefix and your DeviceName
(what you'd like the target to be named in the portal).
👇
eg. DQEGBQUAAAc_paul-laptop
Step 3: Install and link the agent
...when you're already in the right directory
Open a Command Prompt (cmd.exe) as Administrator
Run the relevant command (per your OS), making sure to update:
The
KEY(please see above)The
NESSUS_NAME(please see above)The agent version number (eg.
-8.2.4-)
⚠️ Windows 11, 10, 8.1, 7, Server 2008 SP2 (32-bit)
msiexec /i "NessusAgent-[version]-Win32.msi" NESSUS_SERVER="cloud.tenable.com:443" NESSUS_KEY=[KEY] NESSUS_NAME=[Prefix_DeviceName] /qn
⚠️ Windows 11, 10, 8.1, 7, Server 2022, Server 2019, Server 2016, Server 2012 R2, Server 2012, Server 2008 SP1, Server 2008 R2 SP2 (64-bit)
msiexec /i "NessusAgent-[version]-x64.msi" NESSUS_SERVER="cloud.tenable.com:443" NESSUS_KEY=[KEY] NESSUS_NAME=[Prefix_DeviceName] /qn
⬇️ For example
msiexec /i "NessusAgent-8.2.4-x64.msi" NESSUS_SERVER="cloud.tenable.com:443" NESSUS_KEY=819652a91d674e8d5be08e21299f1a3c69bd9806c72e24bc05df6b32b8db7fe1 NESSUS_NAME=DQEGBQUAAAc_paul-laptop /qn
🤓 Or, to streamline the process further, you can automatically populate half of the NESSUS_NAME by using your machine's existing name:
msiexec /i "NessusAgent-[version]-x64.msi" NESSUS_SERVER="cloud.tenable.com:443" NESSUS_KEY=[KEY] NESSUS_NAME=[Your Prefix_%computername%] /qn
⬇️ For example
msiexec /i "NessusAgent-8.2.4-x64.msi" NESSUS_SERVER="cloud.tenable.com:443" NESSUS_KEY=819652a91d674e8d5be08e21299f1a3c69bd9806c72e24bc05df6b32b8db7fe1 NESSUS_NAME=DQEGBQUAAAc_%computername% /qn
...when you're adding the path manually
Open a Command Prompt (cmd.exe) as Administrator
Run the following command (per your OS), making sure to update:
The path to where the installer was downloaded (please see end of the article if you're not sure)
The
KEY(please see above)The
NESSUS_NAME(please see above)The agent version number (eg.
-8.2.4-)
⚠️ Windows 11, 10, 8.1, 7, Server 2008 SP2 (32-bit)
msiexec /i "[the path to where the installer was downloaded]\NessusAgent-[version]-Win32.msi" NESSUS_SERVER="cloud.tenable.com:443" NESSUS_KEY=[Key] NESSUS_NAME=[Prefix_DeviceName] /qn
⚠️ Windows 11, 10, 8.1, 7, Server 2022, Server 2019, Server 2016, Server 2012 R2, Server 2012, Server 2008 SP1, Server 2008 R2 SP2 (64-bit)
msiexec /i "[the path to where the installer was downloaded]\NessusAgent-[version]-x64.msi" NESSUS_SERVER="cloud.tenable.com:443" NESSUS_KEY=[Key] NESSUS_NAME=[Prefix_DeviceName] /qn
⬇️ For example
msiexec /i "C:\Users\Intruder\Downloads\NessusAgent-8.2.4-x64.msi" NESSUS_SERVER="cloud.tenable.com:443" NESSUS_KEY=819652a91d674e8d5be08e21299f1a3c69bd9806c72e24bc05df6b32b8db7fe1 NESSUS_NAME=DQEGBQUAAAc_paul-laptop /qn
...when you don't know the path (try this)
Open a Command Prompt (cmd.exe) as Administrator
Run the relevant command (per your OS), making sure to update:
The
KEY(please see above)The
NESSUS_NAME(please see above)The agent version number (eg.
-8.2.4-)
⚠️ Windows 11, 10, 8.1, 7, Server 2008 SP2 (32-bit)
msiexec /i "%userprofile%\Downloads\"NessusAgent-[version]-Win32.msi" NESSUS_SERVER="cloud.tenable.com:443" NESSUS_KEY=[KEY] NESSUS_NAME=[Prefix_DeviceName] /qn
⚠️ Windows 11, 10, 8.1, 7, Server 2022, Server 2019, Server 2016, Server 2012 R2, Server 2012, Server 2008 SP1, Server 2008 R2 SP2 (64-bit)
msiexec /i "%userprofile%\Downloads\"NessusAgent-[version]-Win64.msi" NESSUS_SERVER="cloud.tenable.com:443" NESSUS_KEY=[KEY] NESSUS_NAME=[Prefix_DeviceName] /qn
⬇️ For example
msiexec /i "%userprofile%\Downloads\"NessusAgent-8.2.4-x64.msi" NESSUS_SERVER="cloud.tenable.com:443" NESSUS_KEY=819652a91d674e8d5be08e21299f1a3c69bd9806c72e24bc05df6b32b8db7fe1 NESSUS_NAME=DQEGBQUAAAc_paul-laptop /qn
Step 4: Reboot your machine
Only applicable if you're on Windows 7 x64 Enterprise, Windows 8 Enterprise or Windows Server 2012.
**Default path for where the installer will download to: C:\Users\[your username]\Downloads
⬇️ For example
msiexec /i "C:\Users\Intruder\Downloads\NessusAgent-8.2.4-x64.msi" NESSUS_SERVER="cloud.tenable.com:443" NESSUS_KEY=819652a91d674e8d5be08e21299f1a3c69bd9806c72e24bc05df6b32b8db7fe1 NESSUS_NAME=DQEGBQUAAAc_paul-laptop /qn
If the installer was downloaded from a browser, hit the dropdown button and click 'Show in folder'. You'll then be able to copy the exact path.
This article describes how to manually install the agent on a Windows device.
If you wish to individually install the agent on devices, you can use the installation wizard inside the platform.
Note: Internal vulnerability scanning is only available to users with a Pro, Premium or Vanguard plan.