HP JETADVANTAGE SECURITY MANAGER. Adding and Tracking Devices

Similar documents
HP JetAdvantage Security Manager. User Guide

Configuring Security Mitigation Settings for Security Bulletin HPSBPI03569 Protecting Solution Installation Settings

HP JETADVANTAGE SECURITY MANAGER. Credential Management

CREATE AND USE VARIABLE DATA

HP Web Jetadmin 8.0 Credential Store Feature

HP OfficeJet 200 Mobile Printer series. Bluetooth Setup Guide

HP SmartTracker. User Guide

HP Device Manager 4.7

Configuring Embedded LDAP Authentication

HP Management Integration Framework 1.7

HP D6000 Disk Enclosure Direct Connect Cabling Guide

HPE Security ArcSight Connectors

HP Operations Orchestration

HP Professional PANTONE Emulation

HP ALM Client MSI Generator

CMD Request. August, 2016

HP Network Node Manager i Software Step-by-Step Guide to Custom Poller

HPE Network Node Manager i Software 10.30

HP StorageWorks Enterprise Virtual Array 4400 to 6400/8400 upgrade assessment

External Media Cards User Guide

HP Intelligent Management Center v7.1

HP Operations Orchestration

HP Identity Driven Manager Software Series

HP Universal CMDB. Software Version: DDMI to Universal Discovery Migration Walkthrough Guide

whitepaper Table of Contents:

HP Web Jetadmin Report Generation Plug-in

HP LF Printing Knowledge Center

HP Project and Portfolio Management Center

HPE ALM Excel Add-in. Microsoft Excel Add-in Guide. Software Version: Go to HELP CENTER ONLINE

HP Instant Printing Pro 2.0

Achieve Patch Currency for Microsoft SQL Server Clustered Environments Using HP DMA

HA150 SQL Basics for SAP HANA

External Devices. User Guide

HPE ilo Federation User Guide for ilo 5

Modem Command Guidelines HP Notebook Series

SQL/MX UPDATE STATISTICS Enhancements

External Devices User Guide

This guide describes features that are common to most models. Some features may not be available on your computer.

HP Network Node Manager i-series Software

HP Data Protector Media Operations 6.11

SAP BusinessObjects Live Office User Guide SAP BusinessObjects Business Intelligence platform 4.1 Support Package 2

HP Mobile Remote Control (Select Models Only) User Guide

WLAN high availability

Integrating HP OpenView Service Desk and HP Systems Insight Manager

HP Storage Provisioning Manager (SPM) Version 1.3 User Guide

Generating Unique System IDs (SIDs) after Disk Duplication using Altiris Deployment Solution

HP ALM. Software Version: patch 2. Business Views Microsoft Excel Add-in User Guide

FAQs Data Workbench SAP Hybris Cloud for Customer PUBLIC

External Devices User Guide

External Media Cards. User Guide

Replacing the Battery HP t5730 and t5735 Thin Clients

HP Storage Mirroring Application Manager 4.1 for Exchange white paper

HP BladeSystem Management Pack (v 1.x) for Microsoft System Center User Guide

OMi Management Pack for Microsoft SQL Server. Software Version: For the Operations Manager i for Linux and Windows operating systems.

IDE Connector Customizer Readme

HP Velocity User Guide for Thin Clients

Migrating from Cisco HSRP to industry standard VRRP

HP Data Protector Integration with Autonomy IDOL Server

External Devices User Guide

HA150. SAP HANA 2.0 SPS02 - SQL and SQLScript for SAP HANA COURSE OUTLINE. Course Version: 14 Course Duration: 3 Day(s)

HP Database and Middleware Automation

Achieving regulatory compliance with reports from ProCurve PCM, IDM, and NIM

HP Point of Sale (POS) Peripherals Configuration Guide Barcode Scanner

Modem and Networking compaq notebook series

HPE ALM Client MSI Generator

Managing Your IP Telephony Environment

Introduction... 2 Assumptions... 2

Enterprise Vault Troubleshooting FSA Reporting. 12 and later

HPE Security ArcSight User Behavior Analytics

HP SmartTracker. Installation guide

Introduction...2. Executive summary...2. Test results...3 IOPs...3 Service demand...3 Throughput...4 Scalability...5

HP Storage Provisioning Manager HP 3PAR StoreServ Peer Persistence

Imaging the HP Z240 Workstation

HP Video Over Ethernet. User Guide

HP Enterprise Integration module for SAP applications

HPE Network Node Manager i Software

HP Easy Printer Care. System Administrator's Guide

HP Business Service Management

ProCurve Switch G ProCurve Switch G

HP-UX Software and Patching Management Using HP Server Automation

Locating Users in the Network with User Tracking

Using SAP NetWeaver Business Intelligence in the universe design tool SAP BusinessObjects Business Intelligence platform 4.1

HP Device Manager 4.6

HP StorageWorks. EVA Virtualization Adapter administrator guide

LaserJet Enterprise M607, M608, M609

WIDS Technology White Paper

Rev HP ap5000 VFD & MSR Frequently Asked Question and Troubleshooting Guide

HP Universal Print Driver: Technical F.A.Q.

HP Color LaserJet Managed E55040 Series Firmware Readme

OMi Management Pack for Microsoft Active Directory. Software Version: Operations Manager i for Linux and Windows operating systems.

HP OpenVMS Operations Manager HTTPS Agents Version 8.6 Configuration Guide

External Media Cards User Guide

LaserJet Pro M501 Getting Started Guide

HP Records Manager. Kofax Capture Template. Software Version: 8.1. Document Release Date: August 2014

HP MSR Routers Troubleshooting Guide (Comware V7)

HPE Automatic Number Plate Recognition Software Version: Automatic Number Plate Recognition Release Notes

HP Service Health Reporter

Virtual Recovery Assistant user s guide

Secure Access Configuration Guide For Wireless Clients

Patrice M. Anderson Instructional Designer

Transcription:

HP JETADVANTAGE SECURITY MANAGER Adding and Tracking Devices CONTENTS Overview... 2 General Description... 2 Detailed Description... 5 Resolve IP Address to Hostname... 5 Resolve Hostname/DNS Alias to IP Address... 5 Add Devices Using a Text or XML File... 6 Add Devices with a Text File... 6 Add Devices with an XML File... 7 Add devices to the Security Manager database... 7 Tracking Device Identity... 8 Manually adding devices to the database... 8 Communicating with the Device... 8 1

OVERVIEW Devices are added to HP JetAdvantage Security Manager manually using the Discover Devices option or dynamically using the Instant-On Security feature. This whitepaper describes the Discover Devices option in detail, including device identity tracking in the Security Manager database. (For information about adding devices through the Instant-On Security feature, see the Instant-On Whitepaper.) GENERAL DESCRIPTION Unless the Instant-On Security feature is in use, adding devices to Security Manager is a manual process. Select Discover Devices from the slide-out option on the left hand side of the Devices tab to set up either automatic or manual device discovery. Devices can be manually added by importing a text or XML file that contains a list of devices or by manually entering the device information. Exported device lists from HP Web Jetadmin or from other properly formatted sources can be used. Device lists can include IP addresses, hostnames, DNS aliases or a combination of all three in XML or text format. Use the Verify option on the Devices tab to verify support for a device or group of devices. Unsupported devices are indicated in the devices panel. To use the Automatic Discovery feature, click the Devices tab and click Discover Devices from the slideout option on the left hand side of the screen. Click Automatic on the Discover Devices screen. Select a Discovery Type: Number of Network Hops this method uses a multicast UDP discovery mechanism to ask HP imaging and printing devices to identify themselves. The user may choose the number of network hops or routers to traverse in the multicast query. The default is 4 hops. Range this discovery method scans the given IP address range for all devices that are supported by Security Manager. 2

Depending on the Discovery Type, either adjust the Number of Network Hops, or type a Start IP Address and End IP Address for manual discovery using an IP range. The group name that is highlighted during the add devices process is the group that populates the Group to Add. However, another group can be substituted here by selecting it from the drop-down selection. To use the Manual Discovery option, choose Manual from the Discovery Type drop-down menu. Either type in addresses manually to be discovered or import a file of devices that had been exported from Web Jetadmin by choosing Add from File for Discovery. Adding devices manually to Security Manager is a two step process. The first step stages the devices before database entry. Once an IP address or hostname is typed into the IP Address/Hostname field, 3

or if a file in imported by selecting Add from File for Discovery, if the Resolve IP addresses to hostnames when devices are added check box is selected (default selection) under the Settings menu, HP Security Manager attempts to resolve the provided IP addresses to a hostname and/or performs a reverse lookup on the IP Address. When IP addresses are provided, deselecting the Resolve IP addresses to hostnames when devices are added checkbox disables DNS resolve and results in displaying only the IP address during the add devices process. This can be desirable in the absence of a DNS server or if an IP address timeout is expected (typically within 5 seconds). If adding devices by hostname or DNS alias, the DNS resolve to IP address occurs automatically. 4

As the final step, devices from the Devices to Add table are added to the database and assigned a license by selecting Discover. At this time Security Manager interrogates the devices and gathers minimal data to display in columns such as Model Name. The Device Status column indicates No Information since the devices have not been verified yet. Once the devices are selected and the Verify tab is clicked, now Security Manager performs a more complete interrogation such as checking credentials in order to populate the remaining columns. System Name is another related column that is populated by taking the sysname object from the device itself. No DNS lookups are performed here, it is strictly an object returned from the device. It may be useful for location purposes. DETAILED DESCRIPTION Resolve IP Address to Hostname The tracking of Security Manager device identity depends on how the device was added and entered into the database. The following section provides a detailed explanation of the process. When the Resolve IP addresses to hostnames when devices are added box is selected and an IP address is provided without a correlating hostname, the IP address DNS resolve process is as follows: 1. A reverse DNS lookup is performed on the IP address. 2. If resolved to a hostname, a forward DNS lookup is performed on that hostname. 3. The hostname must resolve back to the IP address to be valid. 4. If any address resolve step fails, the device is still staged displaying the IP address only. 5. If reverse and forward address resolve succeeds, the IP address is staged with the hostname. 6. Once the device is entered into the database, Security Manager uses the hostname as the primary device identifier. Typing anything other than a valid IP address is interpreted as a hostname or DNS alias. The hostname resolve process ignores the Resolve IP addresses to hostnames when devices are added selection and always attempts DNS resolution. Resolve Hostname/DNS Alias to IP Address The hostname DNS resolve process is as follows: 1. A hostname or DNS alias is provided. 2. A DNS forward lookup occurs and the corresponding IP address is paired for database entry. Unlike the IP address resolve process, only a forward DNS lookup is required by the hostname resolve process. Failure to resolve the hostname or DNS alias to an IP address produces an error. 5

Staging devices in the Discover Devices window can assist with device identity validation before entering that device address into the database. Once a device is added to the Devices list, it can be removed by highlighting it and selecting the Delete button (multiple rows can by highlighted and removed). Add Devices Using a Text or XML File The alternative to staging devices in a singular fashion is to import a pre-populated device list in text or XML file format. This is performed by selecting the Add from File for Discovery button and browsing to your device file of choice. Add Devices with a Text File The devices listed in the text file (one per line) can include IP addresses, hostnames, DNS alias records, or a mixture of all three. The text file is invalid if: an address line exceeds 256 characters an address line contains control characters or symbols it cannot be parsed correctly 6

Add Devices with an XML File You can create device lists in XML format from a Security Manager export, an HP Web Jetadmin export, or by using an XML editor. Security Manager only uses the data found for the IP Address and IP Hostname tags. Examples of exported HP Web Jetadmin and Security Manager device lists are shown below. If both the hostname and IP address are included in the XML file, the hostname is used during DNS resolution and the Resolve IP addresses to hostnames when devices are added setting is ignored. Hostname resolution always occurs when the hostname is provided, regardless of whether the Resolve IP addresses to hostnames when devices are added is selected. HP Security Manager uses the IP address that the provided hostname resolves to, which might be different than the IP address provided in the same XML file with the hostname. This ensures that the hostname to IP address pairing is current. ADD DEVICES TO THE SECURITY MANAGER DATABASE To add the devices listed in the Discover Devices table, select the Discover button. If a license file is installed in Security Manager, devices are added to the database and automatically assigned a license. Without a license file installed, devices are still added to the database. Licenses can be 7

manually assigned later. A Success message displays the number of new devices added, duplicates skipped, devices licensed and unlicensed. TRACKING DEVICE IDENTITY How a device is entered into the database determines how device identity is tracked and used for communication. Use the following definition and the flow chart below to understand how Security Manager tracks device identity. Manually adding devices to the database Devices are manually added to Security Manager in a singular fashion or through a device list during the import process. Device identity is provided to Security Manager via an IP address, hostname, or DNS alias (CNAME). Devices cannot be added by MAC or network interface hardware address. If a device is added using the hostname or DNS alias, the device s IP address is automatically resolved and paired to the hostname or DNS alias in the database. The Resolve IP Addresses to Hostnames when devices are added selection is ignored when a hostname or DNS alias is provided as the device identity. If the device is added using the IP address, a database entry choice is provided. If Resolve IP Addresses to Hostnames when devices are added is selected (default), the hostname is resolved and linked to the IP address in the database. If Resolve IP Addresses to Hostnames when devices are added is not selected, the device s hostname is not resolved and only the IP address is entered in the database. Communicating with the Device When a task is launched, HP Security Manager checks for the presence of the hostname or DNS alias in the database. If the hostname or DNS alias is not present, the IP address in the database is used instead. If the hostname or DNS alias is present in the database, it is resolved to the DNS registered IP address. If the IP address is valid and the device is online, communication with that device should be successful. If the device does not respond to the database IP address or DNS provided IP address, communication with that IP address will fail. If communication fails, the appropriate error status is updated in HP Security Manager. When communication is successful and new device identifying information is gathered, the database is updated with the new information. 8

Copyright 2017 HP Development Company, L.P. The information contained herein is subject to change without notice. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein. Microsoft and Windows are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries. c03602117enw, Rev. 4, June 2017 9

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback