Perform the following steps:
- Open the Nessus Web Client.
- Log in to the Nessus client with the user that you created during installation.
- Navigate to the My Account screen by clicking on the home screen under the ACCOUNTS section, which has two sub-options, Account Settings and API Keys:
The settings on this page can be used to change the password for the admin user and also set the email ID, which can be used by the email notification feature, and save the settings.
- Navigate to the API Keys tab beside Account Settings. Here, you can configure API keys to authenticate with the Nessus rest API. You can create new API keys by clicking the Generate button, as follows:
Ensure that you store these keys in a private folder and apply all key-management-related security best practices.
- Navigate to the Users screen by clicking on the home screen under the ACCOUNTS section. This will show the users that are currently present in Nessus:
- Click on New User on the top right to create a new user and fill in the details:
In the preceding screenshot, you can observe that the admin can assign the user role as Standard or System Administrator. Let's assign the Standard role and check the difference between the user privileges:
A new user, show_user_create, with standard privileges has been created. You can clearly spot the difference in privileges between the users, as shown in the following screenshot. Here, the standard user does not have user creation and account management privileges.