This article describes how to install the internal vulnerability scanning agent on a Linux device (we also have installation guides for Windows and macOS):

Step 1: Download the agent installer

Head to the Nessus agent download page:
https://www.tenable.com/downloads/nessus-agents#nessus-agents-7-4-1

Select the right installer package for your flavour of Linux.

Download the file and keep a note where you've saved it. 

Step 2: Install the agent

Fedora, Red Hat, CentOS, and Oracle Linux:

rpm -ivh [NessusAgent package].rpm

Ubuntu, Debian:

dpkg -i [NessusAgent package].deb

Step 3: Configure and link the agent

To configure each device for scanning you'll need the following two pieces of information:

  1. Device Name:
    To identify your devices as targets for vulnerability scanning in our portal, you'll need to name them according to a specific convention. We provide you with a unique client prefix, which needs to prepend what you want to call your device. So if your device is called paul-laptop and your unique client prefix is DQEGBQUAAAc, the device name should be DQEGBQUAAAc_paul-laptop.
  2. Unique Key:
    A second unique identifier that makes sure your device shows up in the right place - we'll also provide this to you.

Once you have the above information ready, open a Terminal window and run the following command - modifying the placeholders (everything inside [ ] brackets) accordingly:

/opt/nessus_agent/sbin/nessuscli agent link --name=[1.Device Name] --key=[2.Unique Key] --cloud

Note: The location of nessuscli might vary depending on your version of Linux

Did this answer your question?