Dynamic Password Update Flow for Standard Scanning Accounts

this process defines how kron pam vault and tenable security center (tsc) synchronize account credentials when the password for a scanning account is dynamically rotated the flow ensures that tenable continues to perform authenticated scans without interruption, even after password changes password rotation and trigger activation (kron pam vault) schedule password rotation the kron pam vault automatically rotates the password of the designated scanning account (credential user) at defined intervals the vault updates the new, randomly generated password on the target system, maintaining compliance with security policies password rotation application trigger execution after a successful password change, the application trigger associated with that specific credential user account is automatically activated this trigger initiates the synchronization process with tenable security center to ensure that the updated password is reflected there as well application trigger tenable security center synchronization credential record identification the application trigger retrieves the newly rotated password from the kron pam vault and searches all credential records in tenable security center it compares the description field values to identify the record corresponding to the updated vault account credential update once the correct credential record is found, the trigger updates the main password field (password) in tenable security center with the new value retrieved from the vault uninterrupted scan operations the updated credentials are immediately utilized by tenable for subsequent scans, ensuring continuous and authorized access to target systems without manual intervention or scan failures