Configuration of Nessus Server (nessusd)

The Nessus server (nessusd) was installed already. It’s time to see how to run the security scanning of the remote linux server. Running the Nessus security scanning basically compose of the following three steps.

Step 1: Create a nessusd account

1. Connect to the Linux server.

2. Log in as admin and then use ‘su –‘ command switch to root.

3. Type: # nessus-adduser

4. Add a new nessusd user with password as follow:

Addition of a new nessusd user

Login : alex
Authentication (pass/cert) [pass] : pass
Password : mypassword

5. Hit ‘Return’ and set the rules. In example below, I do not set any rules for the user (alex).

User rules
nessusd has a rules system which allows you to restrict the hosts that alex has the right to test. For instance, you may want him to be able to scan his own host only.

Please see the nessus-adduser(8) man page for the rules syntax

Enter the rules for this user, and hit ctrl-D once you are done : (the user can have an empty rules set)

default deny

Is that ok (y/n) ? [y] y

user added.

Step 2: Start Nessus Server (nessusd)

Start nessusd as root:

# nessusd -D

Step 3: Connect NessusWX client program to server and start scanning.

Now, everything is ready. It’s time to connect NessusWX client program with the server and perform a security scanning. Let’s do it in the next post.

You may also like...