I have installed nessusd on a Linux machine and NessusWX on windows2000. I was able to authenticate using user id and password and was able to scan the network successfully. Since users can give the userid and password to others what will be the best way to authenticate? Client certificate?. Where can I find the steps to create and activate a client certificate? I created a certificate using nessus-mkcert but how do I limit it to a particular client ip address? Do I just copy the certificate created by nessus-mkcert to the client machine for NessusWX to use?
Thanks for the help
