This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Community FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Action path assumes one scan server.

AdmJLovejoy
Champion Sweeper

‎01-02-2014 12:47 PM

This has always been an issue with Lansweeper. The Action Path assumes one scan server, as it only has one entry. In practice, each scan server that is deployed should have it's own Action Path entry, as that is where the actions would be run from for servers owned/managed by that Scan server.
Thanks, Jim Lovejoy __________________________________________________________________________________________________ James W. Lovejoy | IBM - Cloud Managed Services Delivery | Infrastructure Architect (Windows Server ...
Labels:
0 Kudos
10 REPLIES 10
AdmJLovejoy
Champion Sweeper

‎01-03-2014 11:49 AM

That sounds like the way to go. Thanks for your efforts.
Thanks, Jim Lovejoy __________________________________________________________________________________________________ James W. Lovejoy | IBM - Cloud Managed Services Delivery | Infrastructure Architect (Windows Server ...
0 Kudos
AdmJLovejoy
Champion Sweeper

‎01-03-2014 11:20 AM

Then setup a session with me and I'll make my case.
Thanks, Jim Lovejoy __________________________________________________________________________________________________ James W. Lovejoy | IBM - Cloud Managed Services Delivery | Infrastructure Architect (Windows Server ...
0 Kudos
Hemoco
Lansweeper Alumni
In response to AdmJLovejoy

‎01-03-2014 11:40 AM

AdmJLovejoy wrote:
Then setup a session with me and I'll make my case.

Jim,

We understand your problem, the actions do not work the way you want.

We are working on Deployment/Scripting, this way you will be able to execute commands in the context/security of the scanning servers to the clients.
0 Kudos
AdmJLovejoy
Champion Sweeper

‎01-03-2014 09:28 AM

This is why it's never been very useful to us. And will not be very useful in large segregated environments. If the client is not a member of the domain, this is useless. It truly is a design flaw.
Thanks, Jim Lovejoy __________________________________________________________________________________________________ James W. Lovejoy | IBM - Cloud Managed Services Delivery | Infrastructure Architect (Windows Server ...
0 Kudos
Hemoco
Lansweeper Alumni
In response to AdmJLovejoy

‎01-03-2014 10:42 AM

AdmJLovejoy wrote:
It truly is a design flaw.

Let's say that we don't agree on this one 😉
0 Kudos
Hemoco
Lansweeper Alumni

‎01-03-2014 09:18 AM

This will most likely not be changed, the actions are designed to be run on the client in the security context of the client.
0 Kudos
AdmJLovejoy
Champion Sweeper

‎01-02-2014 10:46 PM

I get what you're saying, two issues.

1. All of our users are remote, and their Laptops are not a member of any of our server domains. So the security context has to come from the webserver.

2. It's not possible to push out a DFS share to all locations.

My thinking is, if actions were executed from the appropriate scan server the issue goes away.
Thanks, Jim Lovejoy __________________________________________________________________________________________________ James W. Lovejoy | IBM - Cloud Managed Services Delivery | Infrastructure Architect (Windows Server ...
Preview file
141 KB
0 Kudos
Hemoco
Lansweeper Alumni

‎01-02-2014 02:40 PM

I'm not sure if we are talking about the same problem.

All actions are initiated from the workstations in the security context of the user running the action.
The place where the actions (executables) are stored is not related to these security.
You can place the files anywhere you want, as long as the user running the action has access to them (a file share or unc path is most common)
0 Kudos
AdmJLovejoy
Champion Sweeper

‎01-02-2014 02:27 PM

This assumes that workstations will have access to file shares, and that the files shares will have access to run Actions against all servers. That may be true in small environments, but it not in corporate enterprise environments that may consist of multiple data centers.

In our environment, desktop access will never have direct access servers over a file share protocol. There would be not way to comply with HIPAA nor FDA guidelines if we opened our network in that fashion.

Any other ideas?
Thanks, Jim Lovejoy __________________________________________________________________________________________________ James W. Lovejoy | IBM - Cloud Managed Services Delivery | Infrastructure Architect (Windows Server ...
0 Kudos

New to Lansweeper?

Try Lansweeper For Free

Experience Lansweeper with your own data.
Sign up now for a 14-day free trial.

Try Now