You can search an LDAP directory for devices to add to your ZENworks database. The directory can be one that is already defined as a user source in your Management Zone, or it can be a new directory.
You can recursively search for device in all the directories from the root context. Or, you can limit the search by specifying one or more contexts to search. Device objects that are found are queried for well-known attributes (dnsHostName, OperatingSystem, wmNameDNS, wmNameOS, and so forth) to attempt to determine the OS version and DNS name of the device.
Before performing an LDAP discovery, make sure the following prerequisites are satisfied:
An LDAP search requires the ZENworks Server to provide credentials that give read access to the contexts being searched. When accessing Novell eDirectory, the account also requires read rights to the WM:NAME DNS attributes on the workstation and server objects.
An LDAP search of Active Directory requires the ZENworks Server to use a DNS server to resolve the device’s DNS name (as recorded on the object’s DNS name attribute in Active Directory) to its IP address. Otherwise, the device is not added as a discovered device.
You use the Create New Discovery Task Wizard to create and schedule an LDAP discovery task:
In ZENworks Control Center, click the Deployment tab.
In the Discovery Task panel, click New to launch the New Discovery Task Wizard.
Complete the wizard by using information from the following table to fill in the fields.
Wizard Page |
Details |
---|---|
Select Discovery Type page |
Select LDAP Discovery Task. Specify a name for the task. The name cannot include any of the following invalid characters: / \ * ? : " ' < > | ` % ~ |
Enter LDAP Settings page > Search pre-configured LDAP source field |
The Enter LDAP Settings page lets you identify the LDAP directory and contexts where you want to perform the discovery task. A preconfigured LDAP source is one that has already been defined as a user source in your Management Zone. If you want to select a new source, see Enter LDAP Settings page > Specify an LDAP Source field. To use a preconfigured source:
|
Enter LDAP Settings page > Specify an LDAP Source field |
You can create a new connection to a LDAP directory in order to discover devices in the directory. If you want to use an existing connection, see Enter LDAP Settings page > Search pre-configured LDAP source field above. To create a new connection to an LDAP directory:
|
Discovery Settings page |
LDAP discovery retrieves the hostname, operating system type and version, and IP address of a discovered device from the LDAP source. Based on the selected discovery technologies, you can obtain the following additional information on a device:
To obtain additional information on a device:
|
Set the Discovery Schedule page |
Choose whether you want the task to run as soon as it is created (the Now option) or if you want to schedule the task to run at a future date and time. If you select Scheduled, choose one of the following schedules: No Schedule: Indicates that no schedule has been set. The task does not run until a schedule is set or it is manually launched. This is useful if you want to create the task and come back to it later to establish the schedule or run it manually. Date Specific: Specifies one or more dates on which to run the task. Recurring: Identifies specific days each week, month, or a fixed interval on which to run the task. For more information about the schedules, click the Help button. |
Select Primary Server page |
Select the ZENworks Server that you want to perform the deployment task. |
Select or Edit a Proxy Device page |
The Select or Edit a Proxy Device page lets you choose whether you want to use a proxy device to perform the discovery task. |
Select or Edit a Proxy Device page > Windows Proxy |
If you want to use a Windows Proxy instead of the Primary Server to perform the discovery tasks on Windows devices, click the Windows Proxy option and configure the settings in the Select Windows Proxy dialog box. A Windows Proxy is used to perform the following actions:
Discovery through WMI, WinAPI and SNMP requires certain ports to be reachable on the target devices, so the Primary Server can send Remote Registry, WMI, or SNMP requests to the target devices. Ports are opened by adding them as an exception in the Windows Firewall configuration settings. By default, the scope of the exception applies only to the local subnet. If the target device is in a different subnet than the Primary Server from which the discovery is run, you need to add the IP address of the Primary Server as an exception. However, if you use a Windows Proxy in the same subnet as a target device, you do not need to change the scope of the Windows Firewall exception. The connection between the ZENworks Server and Windows Proxy is secured through SSL. Override Zone Window Proxy Settings: Select this option if you want to override the Windows Proxy settings configured at the Management Zone and configure new settings for the task. Windows Proxy: Select a Windows managed device (server or workstation) to be used as a Windows Proxy for performing the discovery tasks instead of a ZENworks Server. The Windows Proxy must reside in the same network as the target devices. Windows Proxy Timeout: Specify the number of seconds you want the ZENworks Server to wait for a response from the Windows Proxy. |
Select or Edit a Proxy Device page > Linux Proxy |
If you want to use a Linux Proxy instead of the Primary Server to perform the discovery tasks on Linux devices, click the Linux Proxy option and configure the settings in the Select Linux Proxy dialog box. A Linux Proxy is used to perform the following actions:
The SSH discovery requires port 22 to be reachable in order to enable the Primary Server to connect to the target device. If the SSH port is blocked in the Network Firewall, you use a Linux managed device in the same subnet as the target device. The connection between the ZENworks Server and Linux Proxy is secured through SSL. For more information on how to open port 22, see Prerequisites for Deploying to Linux Devices. Override Zone Linux Proxy Settings: Select this option if you want to override the Linux Proxy settings configured at the Management Zone and configure new settings for the task. Linux Proxy: Select a Linux managed device (server or workstation) to be used as a Linux Proxy for performing the discovery tasks instead of a ZENworks Server. The Linux Proxy must reside in the same network as the target devices. Linux Proxy Timeout: Specify the number of seconds you want the ZENworks Server to wait for a response from the Linux Proxy. |
When you finish the wizard, the discovery task is added to the list in the Discovery Tasks panel. You can use the panel to monitor the status of the task. As devices are discovered, they are listed in the Deployable Devices panel.