Discovery Settings

Use the Discovery Settings to configure the scan settings for remote inventory, SNMP and passive discovery.

Discovery Settings has the following tabs:

The option to Download Discovery Agent is available if a new enrollment key is required to install further agents on devices.

Scan Settings

Remote Inventory

Inventory data is automatically received for all devices that have an agent installed, known as managed devices, However, in cases where you don't want an agent on a device but still want the deep hardware and software information the agentless remote inventory capability provides that.

A remote inventory scan detects all device software and hardware data such as space used, space remaining, memory, CPU, processes running and software installed. You must provide domain access credentials. The scan is run every 24 hours on all Windows discovered devices that do not have an Ivanti Neurons Agent installed.

The results can be seen in Neurons Platform > Devices or Discovery > Discovered Devices.

You may need to exclude AgentlessMonitor.exe and Ldiscan.exe from your anti-virus software, as these files are downloaded and executed on the target devices that are going to be inventory scanned.

Credentials

Select existing credential (created in Neurons Platform > Admin > Credentials):

  1. From the drop-down list, select the credential to be used by the agentless engine to access the remote devices to be scanned.

  2. Click Add to add the credential to the list.

  3. Select and Add more credentials to continue to build up the list, as required. If the first credential fails, the next will be attempted, and so on, in order of the list.

  4. Use the arrow buttons to change the order of priority of the credentials.

Create new credential:

  1. From the drop-down list, select Create New Credential.

  2. The New Credential panel displays.

  3. From the Credential Type drop-down list, select Device .

  4. Click Next. The fields that display next depend on the type of credential you selected.

  5. Complete the required details for the selected credential type.

  6. Select Submit.

  7. The newly created credential is added to the list. The credentials are attempted in the order in which they are listed.

  8. Use the arrows to change the priority order of the list.

SNMP Discovery

SNMP is a discovery technology that works by using an agentless discovery device which has the SNMP configuration applied. The configuration comprises of the credentials, port, retries and time to wait for response. The agent sends out SNMP GET queries to devices based on previously discovered device IP address information, and queries the following information:

  • System Description (1.3.6.1.2.1.1.1.0)
  • System SmiEnterprise (1.3.6.1.2.1.1.2.0)
  • System Contact (1.3.6.1.2.1.1.4.0)
  • System Name (1.3.6.1.2.1.1.5.0)
  • System Location (1.3.6.1.2.1.1.6.0)
  • System Services (1.3.6.1.2.1.1.7.0)
  • Subnet Mask (1.3.6.1.2.1.4.20.1.3. +IP)
  • System MAC Address Instance (1.3.6.1.2.1.4.20.1.2. +IP)
  • System MAC Address (1.3.6.1.2.1.2.2.1.6. +MAC Address Instance Value)
  • Entity Physical Description (1.3.6.1.2.1.47.1.1.1.1.2.1)
  • Entity Physical Serial Number (1.3.6.1.2.1.47.1.1.1.1.11.1)
  • Printer General Printer Name (1.3.6.1.2.1.43.5.1.1.16.1)
  • Printer General Serial Number (1.3.6.1.2.1.43.5.1.1.17.1)

For further information on Object Identifiers (OIDs) see http://oid-info.com/

Credentials

Select existing credential:

  1. From the drop-down list, select the credential to be used for SNMP communication.

  2. Click Add to add the credential to the list.

  3. Select and Add more credentials to continue to build up the list, as required. If the first credential fails, the next will be attempted, and so on, in order of the list.

  4. Use the arrow buttons to change the order of priority of the credentials.

Create new credential:

  1. From the drop-down list, select Create New Credential.

  2. The New Credential panel displays.

  3. From the drop-down list, scroll down and select SNMP.

  4. Click Next.

  5. SNMP Version: Select the version of SNMP communication, the version you select determines the fields that must be completed on the next step.

    • Version 3 : allows communication for authentication (MD5 or SHA) and privacy (DES or AES128). Depending on the security level selected for authentication and privacy you will need to enter all or some of the following data; a name for the set of credentials, an optional description, the username, authentication type and password, and privacy type and password.

    • Version 1 or 2c: uses community strings for authentication to obtain information from SNMP enabled devices. You will need the following data; a name for the set of credentials. an optional description, and a community string.

  6. Click Next. Follow Step 7; a or b depending on which SNMP Version you selected.

  7. a. Version 3 selected: Security Level: Select the security level for the SNMP communication.

    • authPriv: Select for communication with Authentication (MD5 or SHA) and Privacy (DES or AES128).

    • authNoPriv: Select for communication with Authentication (MD5 or SHA) but without Privacy.

    • noAuthNoPriv: Select for communication without Authentication and Privacy.

    Click Next. Complete the credential fields:

    • Name: Enter the name for the credentials.

    • Description: Enter an optional description for the credentials.

    • Username: Enter the username.

    • Authentication Type: Select the authentication type; MD5 or SHA (only applicable for security levels; authPriv or authNoPriv).

    • Authentication Password: Enter the authentication password (only applicable for security levels; authPriv or authNoPriv).

    • Privacy Type: Select the privacy type; DES or AES128 (only applicable for security level; authPriv).

    • Password Privacy: Enter the privacy password (only applicable for security level; authPriv).

    b. Version 1 or 2c selected: Complete the credential fields:

    • Name: Enter the name for the credentials.

    • Description: Enter an optional description for the credentials.

    • Community String: Enter the community string.

  8. Select Submit.

  9. The newly created credentials are added to the list. The credentials are attempted in the order in which they are listed.

  10. Use the arrows to change the priority order of the list.

Port: Enter the UDP port number, the default is 161.

Retries: Enter the number of retry attempts. The default is 3, the maximum is 5.

Wait for response (seconds): Enter the number of seconds to wait before retrying. The default is 2.
If the SNMP discovery fails it will automatically retry again every 24 hours.

Passive Discovery

Passive Discovery detects all devices on your corporate network. It listens for any devices that come online, once an ARP (Address Resolution Protocol) request is detected, it captures the device details on the subnet. Name resolution for discovered devices is carried out using NetBIOS and reverse DNS queries. The Operating System for the device can be discovered using OS Fingerprinting technology, if enabled for the network.

The results are reported back to the Discovered Devices view.

Detect devices as they connect to the network: Select to enable passive discovery to listen for network traffic on the subnet to detect any connecting devices.
A device must be nominated to enable the Self-election process which runs in the background.

  • Device Name: Enter the name of a device on your corporate network. The self-elected device will contact this device to verify it is on your corporate network, so choose a device that will always be online and is only available in your corporate network, e.g. a domain controller.

  • Device IP: Enter the IP address of the device. The device is validated by confirming a ping on the device name that matches the IP address.

OS Detection: Enabled by default. Allows discovery to attempt to detect the OS and type of device being discovered. If disabled, it will prohibit OS and device type details from being detected for discovered devices.

Important: OS Detection may generate false positives and trigger Intrusion Detection Systems (IDS) due to how the technology scans remote devices by sending TCP/UDP and ICMP probes to attempt to determine the operating system.

Global Discovery

Use the settings to do a global scan of devices outside of the specified IP range set up in the Discovery Scans page.

Scanner: Select the scanner from the drop-down list. This is the deployment representative that you want to perform the SNMP and/or Remote Inventory scans. The default is Elected Scanner, which is the first deployment representative that polled in. The name of the currently elected scanner is displayed below. If there is no scanner elected, or it is offline the text displays 'waiting for a scanner to be elected'.

SNMP: Select to scan all network devices using the Simple Network Management Protocol.

Remote Inventory: Select to scan all Microsoft Window devices every 24 hours to obtain detailed device information, reported in Neurons Platform > Devices. Devices that have an agent installed will not be included in the scan.

Related topics

Discovery Scans

Discovered Devices

Devices