How to add a device discovery

  • 3 minute(s) read
Prev Next

This guide explains how to register a discovery of type Device on the Segura platform. This configuration enables the automatic identification of assets based on an IP range and supports additional integrations, filtering, scheduling, and import features.

Access path

  1. In the left sidebar, click Management.
  2. Select the Discovery option.
  3. Click Add on the main screen and choose Device from the dropdown menu.

Fill in the initial settings

  1. In the Settings tab, fill in the following fields:
    • Name: Define a descriptive and unique name for this discovery.
    • Initial IP: Enter the starting IP address of the range.
    • Final IP: Enter the ending IP address of the range.
    • Site: Select the site to associate the discovered assets with.
    • Enabled: Select Yes to enable this discovery.
  2. Click Continue to proceed.

Configure access credentials

  1. In the Connection tab, configure how the platform will authenticate and connect:
    • Access credential: Select a stored credential to be used from the vault.
    • Network Connector: Select the connector responsible for performing the remote scan.
    • Configuration password (ex: enable): Optionally provide a privileged password for devices like switches.
    • Force sudo use: Enable if commands should run with sudo privileges on Unix/Linux.
  2. To configure access using pool of credentials:
    • Click Add to select one or more previously registered credential pools.
  3. Click Continue to proceed.

Select search objects

  1. In the Searches tab, enable the objects the discovery should attempt to find:
    • Search for credentials
    • Search for devices groups
    • Search for certificates
    • Find DevOps artifacts
    • Monitor unauthorized access (1 hour intervals)
    • Identify accounts in application pools (IIS)
    • Search FQDN in Windows devices
    • Identify Windows accounts associated with a service
  2. Click Continue to proceed.

Enter plugin information

  1. In the Plugin Information tab, configure plugins for use in discovery:
    • Click Add to select one or more plugins.
    • Provide ports for the selected plugin (comma-separated).
Info
  • The Windows plugin is required to identify accounts used for services.
  • The SQL Server plugin uses port 1434 only for servers with dynamic ports.
  1. Click Continue to proceed.

Configure out-of-band searches

  1. In the Search out-of-band objects tab, enable searches for:
    • Search for main data
    • Search for systems
    • Search for chassis
    • Search for managers
    • Search for session service
    • Search for account service
    • Search for event service
  2. Click Continue to proceed.

Configure discovery execution

  1. In the Execution tab, configure scheduling preferences:
    • Keep scan active after import?*: Keep discovery enabled after the first run.
    • Days allowed for execution: Choose the days when execution is permitted.
    • Periods allowed for execution: Define the allowed time ranges per day.
    • Interval between executions (in hours): Minimum interval before the next run.
  2. Click Continue to proceed.

Activate automatic import

  1. In the Import tab, configure how discovered data is imported:
    • Enable automatic importation of devices and credentials?*: Enable or disable automatic registration.
    • Credential username to import automatically: Click Add to specify usernames that will be imported.
  2. Click Continue to proceed.

Additional tabs displayed based on selected searches

When specific search options are enabled in the Searches tab, additional configuration tabs will appear:

  • Selecting Search for certificates shows the Certificates tab.
  • Selecting Find DevOps artifacts shows the DevOps tab.

Certificates tab

Configure the certificate discovery options:

  • Certificates origin: Apache, Nginx, Tomcat, IIS, Workstation Windows, IBM Websphere, Microsoft CA, Palo Alto, Kubernetes, NetScaler.
  • Search certificates in directories
  • Search certificates without login
  • Import all certificates automatically
  • Extra settings for F5/BigIP: Configure the SOAP port.

DevOps tab

Configure DevOps tool integration:

  • Ansible

    • Enable service
    • Search playbooks
    • Search roles
    • Search hosts

  • Jenkins

    • Enable service
    • Access token
    • Access port
    • Search jobs
    • Search nodes
    • Search users

  • Kubernetes

    • Enable service
    • Select credential
    • Access port
    • Search secrets
    • Bearer token

Review discovery configuration

  1. In the Review tab, confirm all information entered in the previous steps.
  2. After reviewing, click Save to register the discovery.