Chat now with support
Chat with Support

Identity Manager Data Governance Edition 8.0 - User Guide

Introduction Data Governance navigation node and views Administering Data Governance Edition Managing unstructured data access
Managing resource access Managing account access Working with security permissions Working with SharePoint security permissions Account access modeling Bringing data under governance
Classifying governed resources Managing governed resources using the web portal Data Governance Edition reports Troubleshooting Appendix: EMC, NetApp Filer, and SharePoint configuration details Appendix: PowerShell commands Appendix: Governed data attestation policies Appendix: Governed data company policies Appendix: Governed data risk index functions About us

Customize default host settings dialog

Use the Customize default host settings dialog to view or modify the default configuration settings to be used when adding new managed host. Using this dialog, you can set the default installation directory, resource activity settings and security scanning settings based on host type. This dialog appears when you select the Customize default host settings task or right-click command from the Managed hosts view in the Manager.

This dialog contains the following controls:

Table 56: Customize default hosts settings dialog: Controls
Control Description
Host Type

Select the type of host to which the specified default settings apply. Valid types are:

  • Local Windows Computer
  • Windows Cluster / Remote Windows Computer
  • Generic Host Type
  • SharePoint Farm
  • EMC Celerra/VNX Device
  • EMC Isilon Device
  • NetApp OnTap 7-Mode CIFS Device
  • NetApp OnTap Cluster Mode CIFS Device
  • NetApp Cluster NFS Device
  • EMC Isilon NFS Device
  • NetApp 7-Mode NFS Device
  • SharePoint Online
  • OneDrive for Business
Agent Install Path

By default, the agent is installed in the Data Governance Server installation directory (%ProgramFiles%\One Identity\One Identity Manager Data Governance Edition\Agent Services). However, you can use this field to specify an alternate default agent installation for all new agent deployments of the selected type. To specify an alternate default installation directory, enter a local path (for example C:\Mypath) that does not exceed 512 characters.

 NOTE: If there is an existing agent on the machine, you cannot install another agent with a different installation directory. All agents must be installed in the same directory.

 NOTE: You can also use the following registry key to specify an alternate default directory for all new agent deployments: HKEY_LOCAL_MACHINE\SOFTWARE\One Identity\Broadway\Server\GlobalAgentInstallLocation. For more information on this registry setting, see the One Identity Manager Data Governance Edition Technical Insight Guide.
Keywords Optionally, enter a keyword which can then be displayed and used to group your managed hosts on the Managed hosts view.
Security Scanning page

Use the Security Scanning page to set the default settings for scanning agents for changes to the structure and security of the file system.

  • Scanning Schedule

    Use the controls in this pane to define the default scanning schedule to be used.

  • Select or clear the scanning options at the bottom of the dialog:

    • Immediately scan on agent restart or when managed paths change

    • Ignore all files and only store folder security data

      		 NOTE: This option is not available for NFS managed hosts.

    • Collect activity for real-time security updates

      		 NOTE: This option is not available for Generic, SharePoint Farm, SharePoint Online host types.

For more information, see Security Scanning page.

Resource Activity page

Use the Resource Activity page to set the default settings for collecting resource activity.

  • Select the appropriate option to indicate whether to collect resource activity:

    • No activity (scheduled security scans only)

      Select this check box if you do not want to collect resource activity.

    • Collect and aggregate events

      Select this check box to collect resource activity. Select the types of operations to be collected and the aggregation interval.

  • Resource Activity Exclusions

    Click this button to define the accounts, file extensions, and folders to be excluded from resource activity collection by default.

 NOTE: This page is not available for Windows Cluster/Remote Windows Cluster, Generic, EMC Isilon NFS Device, SharePoint Online, or OneDrive for Business host types.

For more information, see Resource activity page.

Restore Factory Defaults

Click the Restore Factory Defaults button to reset any modified settings back to the factory defaults.

OK

Click the OK button to save your selections and close the dialog.

Cancel

Click the Cancel button to close the dialog without saving your selections.

Related Topics

Customizing default host settings

Deployment management

You should regularly check the status of your managed hosts to ensure that the system is working properly. You can see the state of your deployment through the Managed hosts view and Agents view.

Verifying managed host system status

When you first deploy a managed host it takes a few minutes for the agent to start collecting data. As the status changes, a regular refresh allows you to see the changes. You can also use this status to track the progress whenever you add or remove an agent.

A managed host's status is displayed on the Managed hosts view.

Table 57: Managed host status
Status Description

Agent Issue

One or more agents for this managed host are in an error state. The Status Detail column on the Agents view may contain additional information to identify the problem.

NOTE: For remote managed hosts, if there is an issue with any of its agents, you see a status of "Agent Issue."

Agent Out of Disk Space

An agent for this managed host is out of free disk space. For more information, see Checking the agent status.

Agent Registration Failed

An error occurred while an agent was attempting to register with the server.

Agent Unregistered

An agent for this managed host has unregistered.

Ensure that the agent service is running, and that the computer hosting the agent is online.

Agent Update Required

An unsupported agent version has attempted to register with the server. The agents on the managed host must be upgraded.

Deleting

The managed host is being deleted.

Deleting And Uninstalling

The managed host is being deleted and all agents associated with this managed host are being removed.

Deploying Agent

An agent for this managed host is being installed.

Install Failed

An automatic agent install has failed. The Status Detail column on the Agents view may contain additional information regarding the failure.

Installing agents failed

You are attempting to install an agent on a server that already has an agent on it, and that agent belongs to another Data Governance Edition deployment. The Status Detail column on the Agents view may contain additional information, including the name of the deployment that is already using this agent.

Managed

All agents associated with this managed host are working properly.

No communication from agent

The lease for an agent on this managed host has expired. A communications issue has occurred between the agent and the server, or the agent is no longer running.

Ensure that the agent can communicate with the server.

No agents for host

There are no agents associated with this managed host. Deploy an agent for this host in order to maintain a security index and track resource activity.

Not Managed

The host computer is not being managed by Data Governance Edition. That is, no managed host has been configured for the host computer.

Resolved

The managed host’s information has been resolved, but it has not yet been configured for management. This is a temporary state.

Resolving Agents

The server is resolving an agent computer for this managed host.

Un-deploying Agents

An agent for this managed host is being uninstalled.

Uninstalling agents failed

An automatic uninstall of an agent failed. The Status Detail column on the Agents view may contain more information regarding the failure.

Unknown

An error occurred while retrieving this managed host's agent status.

Unknown host type

A host computer with an unknown host type was found.

Unresolvable

The managed host computer has failed to be resolved.

Unresolved

The managed host computer has not yet been resolved.

Upgrading agent

The agent is being upgraded to the latest version.

Waiting for Agent Connection

The managed host has been configured and is waiting for an agent to register.

If a managed host stays in this state for a long time, it could indicate a communications issue between the agent and the server.

Determing the state of the data

Determining the state of the data

For each managed host, use the Managed Hosts view to determine the state of the data. Errors should be addressed immediately, in order to ensure accurate data from the managed host being scanned. The following table outlines the different states your data can have.

Table 58: Data states

State

Description
A scanning error has occurred There has been an error with one of the scanners. Data is incomplete, so you should determine what the issue is. Ensure that the managed host is available on the network, and confirm that the agent’s service account has adequate access to the managed host.
Data available The agent has successfully completed scanning security information for the managed host.
Scanning The agent is performing a full scan of security information. Queries for information at this time may be incomplete.
No managed paths configured There are no managed paths specified and therefore scanning cannot be performed on the managed host.
Waiting for scanning to start The agent is ready to scan when the next scheduled scan is triggered.
Waiting for scanning status The agent is not yet ready to start scanning.
Related Documents