Overview
A Manual Scan also called an Interactive Scan is a process of performing audits on target computers without using agents.
This article describes the process of manually scanning target machines.
Diagnosis
A Manual / Interactive Scans can be initialized through the Scan tab of the GFI LanGuard Console. They do NOT require and do NOT use Agents - the machine where the LanGuard server resides handles the main load of the scanning process and data processing. If you want to schedule such an agentless scan refer to the Creating a Scheduled Scan article.
Follow the steps below to perform a Manual Scan.
Solution
- Launch GFI LanGuard.
- Click on the Scan Tab.
- From the Scan Target drop-down menu, select the target computer or group of computers to scan using the following options:
Option Description Localhost Audit the local host where GFI LanGuard is installed. Domain: primary domain Audit the entire domain/workgroup of the computer/server where GFI LanGuard is installed.
NOTE: Optionally, from the computer tree, right-click a computer/computer group and select Scan > Custom Scan.
- Click the browse button (...) to define custom rules for adding scan targets.
- From the Custom target properties dialog, click Add new rule... links to create a custom rule for computers you want to scan or exclude from scanning.
- From the Add new rule... dialog, select the Rule type described below to add computers:
Rule Type Description Computer name is Search and add computers by name.
- Key in a valid computer name and click Add for each computer.
- Click OK to apply changes.
Computers file list is Search and add computers from a text file.
- Click the Browse button and locate the text file.
- Click OK to apply changes.
NOTE: When submitting a list of target computers from a file, ensure that the file contains only one target computer name per line.Domain name is Search and add computers that are members of a domain.
- Select the domains from the list.
- Click OK to apply changes.
IP address is Search and add computers by IP address.
- Select This computer to add the localhost or Scan another computer to add a remote computer.
- Key in the IP address if required.
- Click OK to apply changes.
IP address range is Search and add computers within an IP range.
- Select Scan an IP address range.
- Key in the IP range or select CIDR subnet and key in the range using CIDR notation.
NOTE: The Classless Inter-Domain Routing (CIDR) provides an alternative way of specifying an IP address range.
The notation is as follows:<Base address> / <IP network prefix>
.
Example: 192.168.0.0/16Organization unit is Search and add computers within an organizational unit.
- Click Select and choose Organizational units.
- Click OK to apply changes.
- Once the rules are added, click OK to close the Add New Rule Dialog.
- Click OK to close the Custom target properties dialog and return to the scan settings.
- Go to Profile and select the scan profile that you want GFI LanGuard to action during the scan. For more information refer to Available Scanning Profiles.
- Go to Credentials and select the login method used by GFI LanGuard to log on to the scan targets. The table below describes the available options:
Option Description Currently logged on user Use the currently logged-on user credentials when logging on scan targets. Alternative credentials Use custom credentials. Key in the username and password. A null session Log onto scan targets using a null session. The user will log onto the target machine as an anonymous user. A private key file Log onto UNIX/LINUX/MAC machines using SSH. Three elements are required for the login:
- Username
- SUDO password
- The path to the file that stores the private key
NOTE: The credentials provided need to have administrator privileges in order for GFI LanGuard to log on to the target computers and carry out the network audit.
- (Optional) Click Scan Options and configure the options described below:
Option Description Use per computer credentials when available Log in to the target machines using the credentials specified in the Dashboard. Remember credentials Use the configured credentials as default when performing an audit. Wake up offline computers GFI LanGuard attempts to power on offline computers using Wake-on-LAN. For more information refer to Configuring Wake-on-LAN on scan targets. Shut down computers after scan Shut down when a scan is complete.
- Click Scan to start auditing the selected targets.
Testing
Another name for this scan type is Interactive Scan - just stay in the tab and watch the scan progress in the Scanner Activity Window section, and updated results in the Scan Results Overview and Scan Results Details sections.