The architecture of the product is network-neutral and therefore helps administrators manage vulnerabilities in computers that have Microsoft Windows installed in them, irrespective of their network setup. Your network setups can include the following:

  • Active Directories
  • Novell eDirectories
  • Workgroups
  • Branch or remote offices
  • Roaming users
  • Multiple domains
  • Active Directory

    If you have a Windows Active Directory-based network, you can install the Central Server in a single location for centralized management all the computers within the Active Directory. For more information, see Architecture for LAN.

    Novell eDirectory

    If you have a Novell eDirectory-based network, you should ensure that all the computers you are managing within this network have a common set of credentials.

     

    Workgroup

    If you have a workgroup-based network, you can manage the computers in the workgroup from a central location. You should ensure that all the computers have a common set of credentials. For more information, see Architecture for LAN.

    Branch or Remote Offices

    The WAN architecture helps you to manage Windows computers that span across multiple locations. These computers can be connected using a Virtual Private Network (VPN) or through the Internet. When computers in different locations are connected using the Internet, the Central server should be installed and configured as an edge device. This means that the designated port should be accessible through the Internet. You need to adopt necessary security standards to harden the operating system where the Central server is installed.

    You must open the following Web ports in the server:

    • 6020: Used for agent-server communication and to access the Web console
    • 6027: Used to complete on-demand tasks like vulnerability scanning, moving agents from one remote office to another and more

    For more information, see Architecture for WAN.

    Roaming Users

    You can manage computers of mobile or roaming users who connect to your network using a VPN connection or through the Internet. The agent installed in their computers contacts the Central server installed in your network periodically. It gathers information about the necessary instructions and executes the same. It also updates the data and status information in the Central server. For more information, see Architecture for WAN.

    Multiple Domains

    Computers across multiple domains can be managed if the multiple domains are set up in the following ways:

    • Multiple domains in the same LAN
    • Multiple domains that span across the globe
    • Any combination of Active Directory, workgroup or Novell eDirectory-based networks

    The computers within the same domain or workgroup should have a common set of credentials irrespective of the domains they are combined with. For more information, see Architecture for WAN and Architecture for LAN.

    *Refers to Active Directory, workgroups or other directory-based networks