Discovery Scan Configuration

The host is determined based on the configuration defined under Host configuration. The Discovery application checks for the ports that are opened/closed on the machines based on this configuration. The Discovery application will first check (based on the rank) whether port 135 is opened or closed.

Details about Host and Credential Configuration can be found at the bottom of this topic.

In the main window, click the gear icon and select Discovery > Discovery Scan Configuration.

The Discovery Scan Configuration window displays. It contains the following sections:

Platform Type

Credential Configuration

PAExec Configuration

Complete the sections, referring to the details below.

When all selections/entries are made, click Save.

Platform Type

In the window, click Add Platform Type. The Add Platform Type dialog box displays.

Click the drop-down list and select a Platform Type.

Enter the Port details.

If the port is open, the Discovery application tries to find the matching credential based on the Credential Configuration. If the credential is matched it will determine the host .

If the port is closed, the Discovery application will check for the next ranked port. If the second-ranked port is closed it checks for the third-ranked port. If the last ranked port is also closed, then it will display an Unknown Host message.

If none of the credentials are matched, it will check for the next ranked port.

When all selections/entries are made, click Save.

Credential Configuration

The table below explains the logic of credential configuration.

Credential Configuration	Try All Credentials	Try Matching Credentials
Windows Domain	Performs the first two steps of Try Matching Credentials. If the specified domain credentials don't match, it tries the remaining Windows credentials. If none of the Windows credentials match, it will proceed with the next ranked port.	Associated windows credentials will be tried first. When performing a scan for the first time, there won’t be any associated credentials for a Host. Therefore, it will perform the below step. At the end of the initial scan, a matching credential for a host(s) will be associated, and this credential will be used for next subsequent scans. Windows credentials that are mapped to the specified IP address will be matched first. If none of the credentials match, it will try with the specified domain credentials. If the specified domain credentials don'tt match, then it will proceed with the next ranked port.
Windows Workgroup	Performs the first two steps of Try Matching Credentials. If none of the credentials match, it tries the remaining Windows credentials. If the remaining credentials don't match, it proceeds with the next ranked port.	Associated windows credentials will be tried first. When performing a scan for the first time, there won’t be any associated credential for a Host. Hence it will perform the next step. At the end of the initial scan, a matching credential for a host(s) will be associated, and this credential will be used for next subsequent scans. Windows credentials that are mapped to the specified IP address will be matched first. If none of the credentials match, then it will proceed with the next ranked port.
Linux / SNMP	Performs the first two steps of Try Matching Credentials. If none of the credentials match, it tries the remaining Linux / SNMP credentials. If the remaining credentials don't match, it will display an Unknown Host message.	Associated Linux /SNMP credential is tried first. When performing a scan for the first time, there won’t be any associated credential for a Host. Therefore, it performs the below step. At the end of the initial scan, a matching credential for a host(s) will be associated, and this credential is used for subsequent scans. Linux /SNMP credentials mapped to the specified IP address are matched first. If none of the credentials match, it proceeds with the next ranked port.

Credential Configuration

Try All Credentials

Try Matching Credentials

Windows Domain

Performs the first two steps of Try Matching Credentials.

If the specified domain credentials don't match, it tries the remaining Windows credentials.

If none of the Windows credentials match, it will proceed with the next ranked port.

Associated windows credentials will be tried first.

When performing a scan for the first time, there won’t be any associated credentials for a Host. Therefore, it will perform the below step. At the end of the initial scan, a matching credential for a host(s) will be associated, and this credential will be used for next subsequent scans.

Windows credentials that are mapped to the specified IP address will be matched first.

If none of the credentials match, it will try with the specified domain credentials.

If the specified domain credentials don'tt match, then it will proceed with the next ranked port.

Windows Workgroup

Performs the first two steps of Try Matching Credentials.

If none of the credentials match, it tries the remaining Windows credentials.

If the remaining credentials don't match, it proceeds with the next ranked port.

Associated windows credentials will be tried first.

When performing a scan for the first time, there won’t be any associated credential for a Host. Hence it will perform the next step. At the end of the initial scan, a matching credential for a host(s) will be associated, and this credential will be used for next subsequent scans.

Windows credentials that are mapped to the specified IP address will be matched first.

If none of the credentials match, then it will proceed with the next ranked port.

Linux / SNMP

Performs the first two steps of Try Matching Credentials.

If none of the credentials match, it tries the remaining Linux / SNMP credentials.

If the remaining credentials don't match, it will display an Unknown Host message.

Associated Linux /SNMP credential is tried first.

When performing a scan for the first time, there won’t be any associated credential for a Host. Therefore, it performs the below step.

At the end of the initial scan, a matching credential for a host(s) will be associated, and this credential is used for subsequent scans.

Linux /SNMP credentials mapped to the specified IP address are matched first.

If none of the credentials match, it proceeds with the next ranked port.

PAExec Configuration

PAExec is a third-party, external application package inside the Virima Discovery application. It is used to help the Discovery application login into the remote Windows machines and execute the probes.

By default, some options are checked inside the Discovery Scan Configuration windows because these are mandatory settings required for performing the remote executions.