The discovery process uses the Simple Networks Management Protocol (SNMP) and command line (CLI) to discover network devices.
After you configure an IP address or CIDR range, the discovery engine performs a TCP scan against the IP address to determine if port 22, 23, or 443 are monitoring for connections. If the TCP scan is successful, and SNMP query is configured to determine the type of device, the SNMP Get Community String is used based on the IP address.
This information is used to determine which adapter the device should be mapped to when added. JSA Risk Manager connects to the device and collects a list of interfaces and neighbor information, such as CDP, NDP, or ARP tables. The device is then added to the inventory.
The configured IP address used to initiate the discovery process might not be the assigned IP address for the new device. JSA Risk Manager adds a device using the IP address for the lowest numbered interface on the device (or lowest loopback address, if any).
If you use the Crawl the network from the addresses defined above check box, the IP address of the neighbors collected from the device are re-introduced into the discovery process and the process repeats for each IP address.
Administrators use Discover Devices to determine the type of device.
When performing a device discovery, any device that is not supported but responds to SNMP is added with the Generic SNMP adapter. If you want to perform a path filter through the device with simulated routes, you must manually remove the device.
- On the navigation menu, click Admin.
- Click Apps.
- In the Risk Manager pane, click Configuration Source Management.
- Configure the SNMP
protocol, and add the IP address or CIDR range of the devices that
you want to discover.
On the navigation menu, click Protocols.
From the Network Groups pane, click the (+) symbol.
Type a name for the network group.
In the Add address (IP, CIDR, Wildcard, or Range) field, type the IP address or CIDR range.
Click (+) to add the IP address or CIDR range.
Select the SNMP protocol.
- On the navigation menu, click Discover Devices.
- Type an IP address or CIDR range.
This IP address or CIDR range indicates the location of devices you want to discover.
- Click the Add (+) icon.
- If you want to also search for devices in the network from the defined IP address or CIDR range, select the Crawl the network from the addresses defined above check box.
- Click Run.