Skip to main content
Skip table of contents

Active Directory (AD)

The Active Directory Scan allows Sectona to collect information from the catalog of assets in Active Directory. This reduces the administrator's effort to keep the asset list in sync with AD. You can discover Windows computers by searching Active Directory instances. Discovered computers have a resource created for them in the Asset Profiler. This method uses the LDAP discovery technique from specified Organization Units (OUs) of the active directory. The following requirements must be met while discovering windows assets from the active directory:

Requirement

Description

Connectivity / Ports
(Sectona → Active Directory)

389

Credential

  • This discovery method also requires Active Directory Domain credentials. Refer to this guide for configuring credentials for this activity.

  • Recommended permission for Active Directory Credential with Read Permissions on Specific OUs.

Adding an Active directory scan job

Login to system and select PAM from the product navigator. To add a discovery job, go to Manage → Discovery → Asset.

Select active director from the drop-down menu by clicking on the Asset Discovery button and follow the below-recommended guidelines:

Attributes 

Description

Job Details


Job title

Enter a unique title for your scan job

Directory Server

Select the directory from the drop-down menu

Group Name

Provides the list of groups on Active Directory when you click on Browse

Schedule type

Select a schedule type whether you would like to initiate this job once or a recurring job. If you select a recurring job, you can choose the days on which this job must be executed.

For example, you want to schedule a job every second day at 5.00 p.m. from 1st January 2018 to scan your network. Include the following details:

Recur every: 2 days
Task Start: 01 Jan 2018
Schedule Start Time: 4:30 pm to 5:15 pm

Task Start

Select the date when the task begins

Schedule Time

You can either choose "Any" or schedule a proper time to start the task and when to end the task

Action


Onboard assets

To start a scan manually with an option to add assets to specify profiles, click the Onboard asset as 'No.' 

If you wish to include assets automatically to existing groups and attributes, select option 'Yes'

Description (optional)

Added text will be included in every asset description field

Location (optional)

Added location field will be included in every asset location. You can configure the system management location here

Criticality level (optional)

Added critical field will be included in every asset. This is important while structuring reports and notifications

Tags (optional)

You can associate an asset with your desired single or multiple tags like Infosec, Banking Core Server, ATM Switches, etc.

Refer to section Tags for more information about adding context with tags.

Checkout policy

The option is selected as default, as one can choose its policy by unchecking the default option and selecting the policy from the drop-down list available.

Rotation policy

The option is selected as default as one can choose its policy by unchecking the default option and selecting the policy from the drop-down list available

Reconciliation policy

The option is selected as default as one can choose its policy by unchecking the default option and selecting the policy from the drop-down list available.

Config value 1

The configuration value can be assigned here.

Config value 2

The configuration value can be assigned here.

Config value 3

The configuration value can be assigned here.

Config value 4

The configuration value can be assigned here.

Exclude from Account Discovery

When ticked, the accounts of this asset will be excluded from the Discovery job.

Owner (optional)

If you have listed owner information of all the assets, please include it here.

The status slider is set to Active by default and click the Save button to add the Network Scan discovery job to the system.

Click the Save + Run Now button to immediately start the active directory discovery.

Related How-to Articles

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.