Chat now with support
Chat with Support

Identity Manager Data Governance Edition 9.0 LTS - User Guide

One Identity Manager Data Governance Edition User Guide Data Governance node and views Administering Data Governance Edition Managing unstructured data access
Managing resource access Managing account access Working with security permissions Working with SharePoint security permissions Account access modeling Bringing data under governance
Classifying governed resources Managing governed resources using the web portal Data Governance Edition reports Troubleshooting EMC, NetApp Filer, and SharePoint configuration details PowerShell commands Governed data attestation policies Governed data company policies Governed data risk index functions

Customizing default host settings

Defining default host settings for each type of managed host is now available through the Manager. Using the Customize default host settings task in the Manager, you can define the default scanning schedule and settings and the default resource activity collection and aggregation settings for the selected managed host type. Once customized default settings are defined, they are used when adding new managed hosts to the Data Governance Edition deployment.

Note: Currently managed hosts are not affected by the default host setting changes made on this dialog; only those added in the future use the settings defined here.

To customize default host settings

  1. In the Navigation view, select Data Governance | Managed hosts.
  2. Select the Customize default host settings from the Tasks view or right-click menu.

    The Customize default host settings dialog appears.

  3. At the top of the dialog, specify the following information: 
    1. Host Type: Select the host type from the drop-down menu:

      • Local Windows Computer
      • Windows Cluster/Remote Windows Computer
      • Generic Host Type
      • SharePoint Farm
      • EMC Celerra/VNX Device
      • EMC Isilon Device
      • NetApp OnTap 7-Mode CIFS Device
      • NetApp OnTap Cluster Mode CIFS Device
      • NetApp Cluster NFS Device
      • EMC Isilon NFS Device
      • NetApp 7-Mode NFS Device
      • SharePoint Online
      • OneDrive for Business
    2. Agent Install Path: Use this field if you want to specify an alternate installation location. This must be a local path (for example, C:\MyPath) and cannot exceed 512 characters.

    3. Keywords: Use this field if you want to specify a keyword to be assigned to newly managed hosts, which can be used for sorting and grouping on the Managed hosts view.
  4. Use the Security Scanning page to define the default scanning schedule and settings. For more information, see Security Scanning page.
  5. Use the Resource Activity page to define the resource activity collection and aggregation settings. For more information, see Resource activity page.

    Note: Resource activity collection is not available for the following host types:

    • Windows Cluster/Remote Windows Computer
    • Generic Host Type
    • EMC Isilon NFS Device
    • SharePoint Online
    • OneDrive for Business
  6. Repeat steps 3 - 5 for any additional host types that require custom default settings.
  7. If necessary, click the Restore Factory Defaults button to reset all changed settings back to the factory defaults.

    Note: Clicking the Restore Factory Defaults button resets all custom default settings back to the factory default settings for all managed host types.

  8. Click OK to save your selections and close the dialog.

All managed hosts of the selected host type that are added in the future will use these customized default settings.

Customize default host settings dialog

Use the Customize default host settings dialog to view or modify the default configuration settings to be used when adding new managed host. Using this dialog, you can set the default installation directory, resource activity settings and security scanning settings based on host type. This dialog appears when you select the Customize default host settings task or right-click command from the Managed hosts view in the Manager.

This dialog contains the following controls:

Table 52: Customize default hosts settings dialog: Controls
Control Description
Host Type

Select the type of host to which the specified default settings apply. Valid types are:

  • Local Windows Computer
  • Windows Cluster / Remote Windows Computer
  • Generic Host Type
  • SharePoint Farm
  • EMC Celerra/VNX Device
  • EMC Isilon Device
  • NetApp OnTap 7-Mode CIFS Device
  • NetApp OnTap Cluster Mode CIFS Device
  • NetApp Cluster NFS Device
  • EMC Isilon NFS Device
  • NetApp 7-Mode NFS Device
  • SharePoint Online
  • OneDrive for Business
Agent Install Path

By default, the agent is installed in the Data Governance Server installation directory (%ProgramFiles%\One Identity\One Identity Manager Data Governance Edition\Agent Services). However, you can use this field to specify an alternate default agent installation for all new agent deployments of the selected type. To specify an alternate default installation directory, enter a local path (for example C:\Mypath) that does not exceed 512 characters.

NOTE: If there is an existing agent on the machine, you cannot install another agent with a different installation directory. All agents must be installed in the same directory.

NOTE: You can also use the following registry key to specify an alternate default directory for all new agent deployments: HKEY_LOCAL_MACHINE\SOFTWARE\One Identity\Broadway\Server\GlobalAgentInstallLocation. For more information on this registry setting, see the One Identity Manager Data Governance Edition Technical Insight Guide.

Keywords (Optional) Enter a keyword which can then be displayed and used to group your managed hosts on the Managed hosts view.
Security Scanning page

Use the Security Scanning page to set the default settings for scanning agents for changes to the structure and security of the file system.

  • Scanning Schedule

    Use the controls in this pane to define the default scanning schedule to be used.

  • Select or clear the scanning options at the bottom of the dialog:
    • Immediately scan on agent restart or when managed paths change

    • Ignore all files and only store folder security data

      NOTE: This option is not available for NFS managed hosts.

    • Collect activity for real-time security updates

      NOTE: This option is not available for Generic, SharePoint Farm, SharePoint Online host types.

For more information, see Security Scanning page.

Resource Activity page

Use the Resource Activity page to set the default settings for collecting resource activity.

  • Select the appropriate option to indicate whether to collect resource activity:
    • No activity (scheduled security scans only)

      Select this check box if you do not want to collect resource activity.

    • Collect and aggregate events

      Select this check box to collect resource activity. Select the types of operations to be collected and the aggregation interval.

  • Resource Activity Exclusions

    Click this button to define the accounts, file extensions, and folders to be excluded from resource activity collection by default.

NOTE: This page is not available for Windows Cluster/Remote Windows Cluster, Generic, EMC Isilon NFS Device, SharePoint Online, or OneDrive for Business host types.

For more information, see Resource activity page.

Restore Factory Defaults

Click the Restore Factory Defaults button to reset any modified settings back to the factory defaults.

OK

Click the OK button to save your selections and close the dialog.

Cancel

Click the Cancel button to close the dialog without saving your selections.

Related Topics

Customizing default host settings

Deployment management

You should regularly check the status of your managed hosts to ensure that the system is working properly. You can see the state of your deployment through the Managed hosts view and Agents view.

Verifying managed host system status

When you first deploy a managed host it takes a few minutes for the agent to start collecting data. As the status changes, a regular refresh allows you to see the changes. You can also use this status to track the progress whenever you add or remove an agent.

A managed host's status is displayed on the Managed hosts view.

Table 53: Managed host status
Status Description

Agent Issue

One or more agents for this managed host are in an error state. The Status Detail column on the Agents view may contain additional information to identify the problem.

NOTE: For remote managed hosts, if there is an issue with any of its agents, you see a status of "Agent Issue."

Agent Out of Disk Space

An agent for this managed host is out of free disk space. For more information, see Checking the agent status.

Agent Registration Failed

An error occurred while an agent was attempting to register with the server.

Agent Unregistered

An agent for this managed host has unregistered.

Ensure that the agent service is running, and that the computer hosting the agent is online.

Agent Update Required

An unsupported agent version has attempted to register with the server. The agents on the managed host must be upgraded.

Deleting

The managed host is being deleted.

Deleting And Uninstalling

The managed host is being deleted and all agents associated with this managed host are being removed.

Deploying Agent

An agent for this managed host is being installed.

Install Failed

An automatic agent install has failed. The Status Detail column on the Agents view may contain additional information regarding the failure.

Installing agents failed

You are attempting to install an agent on a server that already has an agent on it, and that agent belongs to another Data Governance Edition deployment. The Status Detail column on the Agents view may contain additional information, including the name of the deployment that is already using this agent.

Managed

All agents associated with this managed host are working properly.

No communication from agent

The lease for an agent on this managed host has expired. A communications issue has occurred between the agent and the server, or the agent is no longer running.

Ensure that the agent can communicate with the server.

No agents for host

There are no agents associated with this managed host. Deploy an agent for this host in order to maintain a security index and track resource activity.

Not Managed

The host computer is not being managed by Data Governance Edition. That is, no managed host has been configured for the host computer.

Resolved

The managed host’s information has been resolved, but it has not yet been configured for management. This is a temporary state.

Resolving Agents

The server is resolving an agent computer for this managed host.

Un-deploying Agents

An agent for this managed host is being uninstalled.

Uninstalling agents failed

An automatic uninstall of an agent failed. The Status Detail column on the Agents view may contain more information regarding the failure.

Unknown

An error occurred while retrieving this managed host's agent status.

Unknown host type

A host computer with an unknown host type was found.

Unresolvable

The managed host computer has failed to be resolved.

Unresolved

The managed host computer has not yet been resolved.

Upgrading agent

The agent is being upgraded to the latest version.

Waiting for Agent Connection

The managed host has been configured and is waiting for an agent to register.

If a managed host stays in this state for a long time, it could indicate a communications issue between the agent and the server.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating