--- title: Tenable API Integration on Truto slug: tenable category: Default canonical: "https://truto.one/integrations/detail/tenable/" --- # Tenable API Integration on Truto **Category:** Default **Status:** Beta ## Unified APIs ### Unified User Directory API - **Groups** — Groups are a collection of users in the source application. In some applications, they might also be called Teams. - **Users** — The User object represents a User. ## How it works 1. **Link your customer's Tenable account.** Use Truto's frontend SDK; we handle every OAuth and API key flow so you don't need to create the OAuth app. 2. **Authentication is automatic.** Truto refreshes tokens, stores credentials securely, and injects them into every API request. 3. **Call Truto's API to reach Tenable.** The Proxy API is a 1-to-1 mapping of the Tenable API. 4. **Get a unified response format.** Every response uses a single shape, with cursor-based pagination and data in the `result` field. ## Use cases - **Sync Tenable user roles into your GRC platform** — Compliance platforms can pull Tenable Users and Groups via Truto's Unified User Directory API to verify that role-based access controls are properly configured, providing automated evidence for SOC 2 and ISO 27001 audits. - **Enforce consistent access policies across security tools** — SaaS platforms managing multi-tool security stacks can sync Tenable user directories alongside other tools, ensuring that a user's permission level in the integrating product matches their actual Tenable role — critical for least-privilege compliance. - **Automate user provisioning audits for managed security services** — MSSP platforms can read Tenable Users and Groups to detect orphaned accounts, privilege escalation, or misaligned group memberships across client tenants — reducing manual audit effort for their security operations teams. - **Build a unified team directory across cybersecurity tools** — Security operations platforms that aggregate data from multiple vendors can use Truto to normalize Tenable's user and group data into a single directory, giving CISOs a consolidated view of who has access to what across their entire stack. ## What you can build - **Tenable RBAC compliance dashboard** — Display a real-time view of Tenable Users and their Group memberships alongside other integrated tools, flagging access policy violations automatically. - **Cross-platform user access audit report** — Generate audit-ready reports showing each user's roles and group assignments in Tenable, normalized against your platform's unified user directory. - **Orphaned account detection for Tenable** — Automatically identify Tenable user accounts that no longer correspond to active employees by cross-referencing the Unified User Directory with your HR or IdP source of truth. - **Group-based permission mapping** — Map Tenable Groups to your application's internal permission model so end users see only the vulnerability data their Tenable role entitles them to. - **One-click Tenable connection for end users** — Let your customers connect their Tenable accounts through Truto's managed auth flow, removing the need for your team to handle API keys, tokens, or OAuth configuration. ## FAQs ### What Tenable data can I access through Truto today? Truto's Unified User Directory API supports reading Tenable Users and Groups. Additional Tenable resources — such as assets, vulnerabilities, scans, and export workflows — are not yet available as pre-built tools but can be built on request. ### How does authentication work for the Tenable integration? Tenable Vulnerability Management uses API key-based authentication (an Access Key and Secret Key pair). Truto manages the credential storage and injection, so your end users provide their keys once through a managed connection flow and you never handle secrets directly. ### Does Truto handle Tenable's API rate limits and pagination? Yes. Truto abstracts away rate limit handling and pagination for the supported endpoints, so your application receives normalized, complete responses without needing to manage retries or cursor-based paging logic. ### Can I request additional Tenable API resources beyond Users and Groups? Absolutely. Tenable's cloud API exposes assets, vulnerabilities, scans, tags, and asynchronous export workflows. Truto builds new tools on request, so you can ask for coverage of any Tenable endpoint your use case requires. ### How does the Unified User Directory API normalize Tenable's data? Truto maps Tenable's user and group objects to a standardized schema shared across all integrations in the Unified User Directory API. This means you write one query to read users and groups regardless of whether the source is Tenable, an IdP, or another tool. ### What Tenable products does this integration support? The integration targets Tenable Vulnerability Management (formerly Tenable.io), which is Tenable's cloud-hosted platform. On-premises Tenable Security Center (formerly Nessus Manager) uses a different API surface and would require separate integration work.