The architecture of the product is network-neutral and therefore helps administrators manage vulnerabilities in computers that have Microsoft Windows installed in them, irrespective of their network setup. Your network setups can include the following:
If you have a Windows Active Directory-based network, you can install the Central Server in a single location for centralized management all the computers within the Active Directory. For more information, see Architecture for LAN.
If you have a workgroup-based network, you can manage the computers in the workgroup from a central location. You should ensure that all the computers have a common set of credentials. For more information, see Architecture for LAN.
The WAN architecture helps you to manage Windows computers that span across multiple locations. These computers can be connected using a Virtual Private Network (VPN) or through the Internet. When computers in different locations are connected using the Internet, the Central server should be installed and configured as an edge device. This means that the designated port should be accessible through the Internet. You need to adopt necessary security standards to harden the operating system where the Central server is installed.
You must open the following Web ports in the server:
For more information, see Architecture for WAN.
You can manage computers of mobile or roaming users who connect to your network using a VPN connection or through the Internet. The agent installed in their computers contacts the Central server installed in your network periodically. It gathers information about the necessary instructions and executes the same. It also updates the data and status information in the Central server. For more information, see Architecture for WAN.
Computers across multiple domains can be managed if the multiple domains are set up in the following ways:
The computers within the same domain or workgroup should have a common set of credentials irrespective of the domains they are combined with. For more information, see Architecture for WAN and Architecture for LAN.
*Refers to Active Directory, workgroups or other directory-based networks