Re: Credential-free "ON" by default ? - Lansweeper Community

danielm · ‎05-02-2021

Credential-free "ON" by default upon upgrade!
Say what?
should that feature be on in any environment? after the upgarde from 8.0 to 8.3 i checked as soon as i saw the lovely popup notice. and the option listed as "disable" not enable....

Am I the only one that this bothers? I do not like the enriched with data and sent to the Lansweeper-owned recognition API parts specifically.

Can I know if any data has been leaked from our network to Lansweeper(company) or their 3rd parties....!

Using a combination of data gathered from IP scanning and most importantly, Asset Radar, Lansweeper generates fingerprints. Fingerprints consist of at least a MAC address and may be further enriched with data gathered from various protocols, such as DHCP, HTTP, ARP, etc. These fingerprints are generated, encrypted, and stored in the Lansweeper database. They are then sent to the Lansweeper-owned recognition API. Based on the received fingerprint, the recognition API returns more information about the device, which is then also stored in the Lansweeper database. Finally, during the next scan of the device, this information is applied to the asset, i.e. its asset type will be updated, extra fields are filled in.
To make optimal use of both Asset Radar and CDR, it is recommended to have a scanning server in each subnet or VLAN that contains relevant devices. CDR will have the greatest impact on devices for which you don't have credentials (yet), IoT devices, and unmanaged devices.

danielm · ‎05-05-2021

so no reply on this one yet?
Should it be on by default from install or was this non intentional of the installer?

danielm · ‎05-04-2021

yes i know. i had to turn those off right away also.
i wont even bring up the legal agreement. lots of things in there to say no to.

vqT4cDoP9iXyMZw · ‎05-04-2021

danielm wrote:
Credential-free "ON" by default upon upgrade!
Say what?
should that feature be on in any environment? after the upgarde from 8.0 to 8.3 i checked as soon as i saw the lovely popup notice. and the option listed as "disable" not enable....

Am I the only one that this bothers? I do not like the enriched with data and sent to the Lansweeper-owned recognition API parts specifically.

Can I know if any data has been leaked from our network to Lansweeper(company) or their 3rd parties....!

Using a combination of data gathered from IP scanning and most importantly, Asset Radar, Lansweeper generates fingerprints. Fingerprints consist of at least a MAC address and may be further enriched with data gathered from various protocols, such as DHCP, HTTP, ARP, etc. These fingerprints are generated, encrypted, and stored in the Lansweeper database. They are then sent to the Lansweeper-owned recognition API. Based on the received fingerprint, the recognition API returns more information about the device, which is then also stored in the Lansweeper database. Finally, during the next scan of the device, this information is applied to the asset, i.e. its asset type will be updated, extra fields are filled in.
To make optimal use of both Asset Radar and CDR, it is recommended to have a scanning server in each subnet or VLAN that contains relevant devices. CDR will have the greatest impact on devices for which you don't have credentials (yet), IoT devices, and unmanaged devices.

Don't look at Configuration > Privacy Settings either...Lansweeper has been gathering metrics for quite a while.

Hendrik_VE · ‎05-04-2021

Good point, but then again, if you don't want to leak any data from your company to the rest of the world, I think it's best practice to put your Lansweeper instance behind a firewall with no (or limited) access to the internet.
The only access we grant our Lansweeper to the internet is what we explicitly define through proxy whitelisting.
I'm quite confident no Lansweeper 'fingerprints' of my company are shared with ROW 🙂

Credential-free "ON" by default ?

General Discussions

New to Lansweeper?

Try Lansweeper For Free