Asset requirements
Review the requirements before you install and use Asset.
Tanium dependencies
In addition to a license for the Asset product module, make sure that your environment also meets the following requirements.
| Component | Requirement |
|---|---|
| Platform |
|
| Tanium Content | (Optional) Asset includes all of the content it needs for base functionality. You can import additional content or sensors into Asset after installation. |
| Tanium Client | 6.0.314.1540 or later recommended |
| Tanium Connect | (Optional) To create connections with Asset reports as a data source, use Connect 4.3 or later. |
| Tanium Index | (Optional) To create Flexera reports with File evidence data enabled. |
Taniumâ„¢ Module Server
Asset runs as a service on the Tanium Module Server.
Disk space
Asset requires disk storage capacity necessary to support the number of endpoints in your environment. For planning purposes, use 100 MB per 1000 endpoints, for example:
- 5,000 endpoints: 500 MB
- 50,000 endpoints: 5 GB
- 100,000 endpoints: 10 GB
- 250,000 endpoints: 25 GB
- 500,000 endpoints: consult your Technical Account Manager
Usage might vary significantly based on the following variables: the number of endpoints, the number of applications, the number of users, if file evidence data is enabled, and most importantly the attributes that you add on the Inventory Management > Attributes page. These suggested sizes are considered a good estimate for most environments.
Third-party software
The following third-party software is optional for exporting data from Asset:
- For the ServiceNow CMDB connector, the Jakarta release or later is required.
- For Flexera integration, you must have an SQL database that can be configured to receive data from Asset. Ask your TAM for more information.
Host and network security requirements
Specific ports and processes are needed to run Asset.
Ports
The following ports are required for Asset communication.
| Component | Port | Direction | Purpose |
|---|---|---|---|
| Module Server | 443 | Outbound | Access to your ServiceNow instance |
Internet URLs
If security software is deployed in the environment to monitor and block unknown URLS, your security administrator might need to add the following URLs to the whitelist.
- ServiceNow instance (yourcompany.service-now.com)
User role requirements
Tanium 7.0
| Asset Privilege | Read Only User | Question Author or higher | Content Administrator or higher |
|---|---|---|---|
|
View reports and views |
|
|
|
|
Create, edit, delete custom reports and views |
|
1
|
|
|
Edit sources, destinations, service settings |
|
|
|
| Create, edit or delete Flexera destination |
|
|
|
|
1 For owned reports and views only |
|||
Tanium 7.1 or later
| Privilege | Asset Administrator | Asset User | Asset Report Reader |
|---|---|---|---|
|
Show Asset View Asset workbench |
1
|
1
|
1
|
|
Asset Report Read View reports and views |
1
|
1
|
|
|
Asset Report Write Create, edit, and delete reports and views |
|
2 |
|
|
Asset Configuration Item Write Configure all aspects of Asset (service settings, schedules, attributes, destinations) |
|
|
|
|
1 Denotes a provided permission 2 For owned reports and views only |
|||
| Permission | Content Set for Permission | Asset Administrator | Asset User | Asset Report Reader |
|---|---|---|---|---|
| Ask Dynamic Questions |
|
|
|
|
| Read Sensor | Asset |
|
|
|
| Read Sensor | Reserved |
|
|
|
| Write Action | Asset |
|
|
|
| Write Action for Saved Question | Asset |
|
|
|
| Read Saved Question | Asset |
|
|
|
| Write Saved Question | Asset |
|
|
|
| Role | Enables |
|---|---|
| Connect Administrator (prior to Connect 4.8 only) | Create, edit, or delete a Flexera destination |
| Connect User (Connect 4.8 and later) |
Create, edit, or delete a Flexera destination |
| Tanium Administrator |
Create scheduled actions for the file evidence content for Flexera destinations |
Last updated: 4/23/2019 2:55 PM | Feedback