Adding an Asset Discovery job
You can add a new Asset Discovery job.
- Navigate to Administrative Tools | Discovery.
- Click the Asset Discovery tile.
- Click
Add to create a new Asset Discovery job.
- In the Asset Discovery dialog, provide information for the discovery job on the following tabs:
After you save the discovery job, you can modify or run it using the Asset Discovery toolbar. For more information, see Asset Discovery.
General tab (asset discovery)
Navigate to Administrative Tools | Discovery | Asset Discovery | (add or edit a Asset Discovery job).
On the Asset Discovery dialog, General tab, supply general information about the Asset Discovery job and identify the partition where you want Safeguard for Privileged Passwords to add the assets it discovers.
Table 70: Discovery: General properties
| Name |
Enter a name for the Asset Discovery job.
Limit: 50 characters |
| Description |
Enter information about this Asset Discovery job.
Limit: 255 characters |
| Partition |
Browse to select the partition in which to manage the discovered assets.
Important: You cannot change the partition after you save this discovery job. |
| Method |
Choose a type of discovery:
If you select Directory, directory assets that are shared can be discovered into any partition. Directories include Active Directory or OpenLDAP. See Directories that can be searched in Supported platforms.
To share a directory asset, select Available for discovery across all partitions for the asset; see Management tab (add asset). If the check box is not selected, the asset is not shared and the asset will only be discovered into the partitions to which the directory asset is assigned. |
Information tab (asset discovery)
Navigate to Administrative Tools | Discovery | Asset Discovery | (add or edit a Asset Discovery job).
On the Asset Discovery dialog, Information tab, define the directory or network information for the discovery job.
Table 71: Discovery: Information properties for Directory scans
| Directory |
Select the Directory on which to run the Asset Discovery job. |
Table 72: Discovery: Information properties for Network scans
| Enable OS Detection |
This check box is selected by default, indicating that OS fingerprinting is to be used to detect the operation system being used. Clear this check box if you do not want to use the OS fingerprinting process. |
| IPv4 Range |
Enter a range of IPv4 addresses to scan:
- Starting IP Address
- Ending IP Address
Click Add or  Delete to add or remove IPv4 address range sets. |
| Advanced |
|
| Exclude IP |
Safeguard for Privileged Passwords allows you to exclude an IP address within a specified IPv4 range from the scan.
Click Add to exclude an IP address from the scan.
Click Delete to remove the corresponding excluded IPv4 address and include that IP address in the scan. |
Rules tab (asset discovery)
Navigate to Administrative Tools | Discovery | Asset Discovery | (add or edit a Asset Discovery job)
Use the Rules tab on the Asset Discovery dialog to govern the discovered assets.
Discovery details
- Once Safeguard for Privileged Passwords creates an asset, it will not attempt to re-create it or modify the asset if the asset is rediscovered by a different job.
- Any SSH host keys encountered in discovery will be automatically accepted.
- You can configure multiple rules for an Asset Discovery job. When Safeguard for Privileged Passwords runs the Asset Discovery job, if it finds an asset with more than one rule, it applies the connection and profile settings of the first rule that discovers the asset.
To add a new Asset Discovery rule
- On the Rules tab, click Add.
- In the Asset Discovery Rule dialog, enter a Name up to 50 characters.
- You must specify at least one condition, the connection, and a profile for each rule:
- Under Settings, click Add Condition (asset discovery) to add one or more Group, Constraints, LDAP Filter (for LDAP or Active Directory), or Find All. Once one or more conditions have been added, you can
Edit or 
Delete existing conditions.
-
A Connection Template is required and defaults to None (no credentials are associated). To change this, select Edit to configure the authentication parameters. For more information, see Edit Connection Template (asset discovery).
-
For Asset Profile, you can Edit or Delete the profile to govern the discovered assets. The asset profile defaults to the partition default profile and is based on the partition selected on the General tab (asset discovery).
- Select Add Account Discovery Job to select a schedule.
- For Managed Network, you can Edit or Delete the managed network assigned for workload balancing.
- Click OK to save the Asset Discovery rule.
