This article assumes that nessuscli agent is installed in the folders below
โ if that's not the case, you must edit accordingly:
MacOS: cd /Library/Nessus/run/sbin/
Windows: cd "C:\Program Files\Tenable\Nessus Agent\"
Linux: cd /opt/nessus_agent/sbin/
The agent status command:
You must run the command as Admin and be sure you're in the
folder when nessucli is installed (default locations are listed above) ๐
MacOS
Open Terminal: Press command + space bar, and type terminal
In the terminal type
sudo /Library/NessusAgent/run/sbin/nessuscli agent statusand hit return.Check out the options below:
Windows
** Ensure you are running the command as Administrator. (Not admin?) **
** Ensure you are running in Command Prompt and not Powershell)**
Open: Command Prompt: Press Windows button (next to alt) + R; type cmd + hit return or Open search bar; type cmd, scroll down to command prompt + click to open
In the terminal type
"C:\Program Files\Tenable\Nessus Agent\nessuscli" agent statusand hit return.Check out the options below:
Linux
Open a terminal.
In the terminal, type
sudo /opt/nessus_agent/sbin/nessuscli agent statusand hit return.Check out the options below:
The agent status output:
Please review the section below carefully. All possible
output and troubleshooting advice is detailed below.
๐ 'command not found' or 'nessuscli' is not recognized'
If you got one of the following errors, then you're in the wrong directory.
MacOS |
|
Windows |
|
Linux |
|
Change to the right directory
Assuming nessuscli is correctly installed in the default location (mentioned at the top of this article), you can change your command prompt or terminal to the right folder by running:
๏ปฟMacOS: cd /Library/Nessus/run/sbin/
๏ปฟWindows: cd "C:\Program Files\Tenable\Nessus Agent\" (Must run as Admin).
๏ปฟLinux: cd /opt/nessus_agent/sbin/
Once there, you can re-run the agent status command.
Re-run the linking command
If you suspect that you ran the linking command from the wrong directory, then you'll need to run it again. This time, make sure that you're either in the folder where nessuscli is installed, or add the path to the command.
For example (Windows OS only)
๐ If you're in the folder where nessuscli is installed:
msiexec /i NessusAgent-8.2.4-x64.msi" NESSUS_SERVER="cloud.tenable.com:443" NESSUS_KEY=[KEY] NESSUS_NAME=[Your Prefix]_%computername% /qn
๐ *You're adding the path to the default folder:
msiexec /i "C:\Program Files\Tenable\NessusAgent-8.2.4-x64.msi" NESSUS_SERVER="cloud.tenable.com:443" NESSUS_KEY=[KEY] NESSUS_NAME=[Your Prefix]_%computername% /qn
๐ *You moved the installer and need to add the path to a different folder:
msiexec /i "[the path to where the installer was downloaded]\NessusAgent-8.2.4-x64.msi" NESSUS_SERVER="cloud.tenable.com:443" NESSUS_KEY=[KEY] NESSUS_NAME=[Your Prefix]_%computername% /qn
๐ 'Could not open'
If you get one of the following errors, then you are not running the agent status command as Administrator.
MacOS |
|
Windows
|
|
MacOS
Be sure to use sudo
Windows
1. Hit Start
2. Type โcommand,โ and youโll see โCommand Promptโ listed as the main result.
3. Right-click that result and choose โRun as administrator.โ
So long as you don't close that window, all subsequent commands run in that command terminal will be run as Admin (see below):
๐ 'Running: No' and 'Not linked to a manager'
Running: No
Linked to: NoneLink status: Not linked to a manager
Then it could mean one of two things:
The agent hasn't installed:
It is possible that your original install command contained errors (wrong filename, wrong path,name/NESSUS_NAMEetc) and so we would recommend going back and trying the installation process again.Your system cannot reach out to tenable
You need to check that you are connected to the internet and that the agent can reach out to cloud.tenable.com on port 443. (This is the only relevant firewall rule). When you are certain that the system is connected to the internet, try running the command again. If it still says "not linked to a manager" then you will need to try the installation process again.
๐ 'Running': No
Running: NoLinked to: cloud.tenable.com:443Link status: connection has not been attempted
This means that the agent isn't running and you need to either:
Reboot the internal system (if possible)
or
Start the nessus agent system manually, by running the relevant command as Admin:
MacOS |
|
Windows |
|
Linux |
|
RedHat, CentOS, and Oracle Linux |
|
SUSE |
|
Free BSD |
|
Debian and Kali |
|
Ubuntu (*init.d) |
|
Ubuntu (*systemd) |
|
(*) To identify your init daemon search ps 1 in your command prompt to see which manager you're using.
๐ 'Running', but is 'Not linked to a manager'
Running: Yes
Linked to: None Link status: Not linked to a manager
Although it says 'running', the link status here tell us that something has gone wrong during the installation. There are two scenarios here, the first being the most common:
Your linking command is incorrect.
Be sure to check:๐ก
name/NESSUS_NAMEincludes the prefix and the target name (eg.DQEGBQUAAAc_paul)
๐ก You have included the key
๐ก The command reflects your current operating system๐ก You haven't added or missed any characters
An internet proxy/filter is getting in the way
The agent cannot connect to the manager, this could be due to internal network controls such as an outbound proxy. If your environment has these types of controls, please refer to documentation here, and use the proxy parameters on install to ensure the agent connects to the manager via the proxy.
To resolve this, you'll need to link again:
Link (again):
Open the command terminal again โ as Administrator
Copy the relevant link command for your OS, insert
PREFIX_DEVICENAMEand run it.MacOS:
/Library/Nessus/run/sbin/nessuscli agent link --host="cloud.tenable.com" --port="443" --key=819652a91d674e8d5be08e21299f1a3c69bd9806c72e24bc05df6b32b8db7fe1 --name=[Prefix_DeviceName]
Windows:"C:\Program Files\Tenable\Nessus Agent\nessuscli" agent link --host="cloud.tenable.com" --port="443" --key=819652a91d674e8d5be08e21299f1a3c69bd9806c72e24bc05df6b32b8db7fe1 --name=[Prefix_DeviceName]
Linux:
/opt/nessus_agent/sbin/nessuscli agent link --host="cloud.tenable.com" --port="443" --key=819652a91d674e8d5be08e21299f1a3c69bd9806c72e24bc05df6b32b8db7fe1 --name=[Prefix_DeviceName]
Check out the targets page to see if it has appeared.
๐ 'Running', but there's an 'authentication error'
Running: Yes
Linked to: cloud.tenable.com:443 Link status: authentication error
This indicates that the agent has been removed (intentionally or not). To resolve this, you'll need to link again.
Link (again):
Open the command terminal again โ as Administrator
Copy the relevant link command for your OS, insert your
PREFIX_DEVICENAMEand run it.
MacOS:/Library/Nessus/run/sbin/nessuscli agent link --host="cloud.tenable.com" --port="443" --key=819652a91d674e8d5be08e21299f1a3c69bd9806c72e24bc05df6b32b8db7fe1 --name=[Prefix_DeviceName]
Windows:"C:\Program Files\Tenable\Nessus Agent\nessuscli" agent link --host="cloud.tenable.com" --port="443" --key=819652a91d674e8d5be08e21299f1a3c69bd9806c72e24bc05df6b32b8db7fe1 --name=[Prefix_DeviceName]
Linux:
/opt/nessus_agent/sbin/nessuscli agent link --host="cloud.tenable.com" --port="443" --key=819652a91d674e8d5be08e21299f1a3c69bd9806c72e24bc05df6b32b8db7fe1 --name=[Prefix_DeviceName]
Check out the targets page to see if it has appeared.
๐ It's Running and is linked, but I still can't see my internal system on the targets page. What now?
Running: YesLinked to: cloud.tenable.com:443Link status: Connected to cloud.tenable.com:443
This means that it has linked to Tenable, but there is an underlying issue that is stopping it from working as intended.
If you have checked your linking command and everything looks good, then your best bet at this point would be to start over.
Unlink the agent
Windows (must be run as Admin)"C:\Program Files\Tenable\Nessus Agent\nessuscli.exe" agent unlink
Linux
sudo /opt/nessus_agent/sbin/nessuscli agent unlink
MacOS
sudo /Library/NessusAgent/run/sbin/nessuscli agent unlink
In the terminal, as Admin, run the following command:nessuscli agent unlinkCheck that the unlink command worked by running the agent status
It should return:Linked to: NoneLink status: Not linked to a managerUninstall the agent
Follow the steps in the relevant OS guide (including any appended notes).Reboot the system.
Re-add the internal system, following the steps in our installation articles.
Check out the targets page to see if it has appeared.
If it still doesn't show up, it might be worth heading over to our troubleshooting doc.