Home Setting up Nessus Pro
Post
Cancel

Setting up Nessus Pro

Posted Mar 10, 2022 Updated Jun 20, 2022
By Sam
1 min read
  • Build your server
  • Download the package for your server. https://www.tenable.com/downloads/nessus
  • For this example a Ubuntu server is being used.
  • Copy the package to your service and for Ubuntu run the following command.
1

sudo dpkg -i Nessus*.deb

and run the following command to start the daemon

1

/bin/systemctl start nessusd.service
  • Navigate to https://FQDN:8834/
  • Run through the set up to complete the build.
  • Nessus files are stored in /opt/
  • Useful commands for Ubuntu
1

/bin/systemctl start nessusd.service

Starts the daemon

1

/bin/systemctl stop nessusd.service

Stops the daemon

1

/bin/systemctl restart nessusd.service

Restarts the daemon

SSL certs are stored:

1

/opt/nessus/com/nessus/CA/servercert.pem

and

1

/opt/nessus/var/nessus/CA/serverkey.pem

Use the following commands to start or stop the service: Note that you would use these command with these system. The latest Linux distros are using systemctl not init.

RedHat, CentOS, and Oracle Linux

Start

1

/sbin/service nessusd start

Stop

1

/sbin/service nessusd stop
SUSE

Start

1

/etc/rc.d/nessusd start

Stop

1

etc/rc.d/nessusd stop
FreeBSD

Start

1

vice nessusd start

Stop

1

vice nessusd stop
Debian, Kali, and Ubuntu

Start

1

etc/init.d/nessusd start

Stop

1

etc/init.d/nessusd stop

Update or add ssl cert

Back up the original Nessus CA and server certificates and keys:

1
2
3
4

cp /opt/nessus/com/nessus/CA/cacert.pem /opt/nessus/com/nessus/CA/cacert.pem.orig
cp /opt/nessus/var/nessus/CA/cakey.pem /opt/nessus/var/nessus/CA/cakey.pem.orig
cp /opt/nessus/com/nessus/CA/servercert.pem /opt/nessus/com/nessus/CA/servercert.pem.orig
cp /opt/nessus/var/nessus/CA/serverkey.pem /opt/nessus/var/nessus/CA/serverkey.pem.orig

Replace the original certificates with the new custom certificates:

1
2
3
4

cp customCA.pem /opt/nessus/com/nessus/CA/cacert.pem
cp customCA.key /opt/nessus/var/nessus/CA/cakey.pem
cp servercert.pem /opt/nessus/com/nessus/CA/servercert.pem
cp server.key /opt/nessus/var/nessus/CA/serverkey.pem

Restart Nessus:

1

service nessusd restart

If you get stuck: https://docs.tenable.com/nessus/Content/UploadACustomCACertificate.htm

homelab, howto's, linux, security
homelab linux howto's security
This post is licensed under CC BY 4.0 by the author.
Recently Updated
Contents