User`s guide
Table Of Contents
- Application Discovery Manager User’s Guide
- Contents
- About This Book
- Architecture Overview
- Getting Started
- Managing ADM
- Groups
- Discovery
- Application Patterns
- Report
- Connectors
- Solver
- Index
VMware, Inc. 39
Chapter 5 Discovery
Asimilarscenariomightalsooccurwithothertypesofservers,dependingonhowtheyareinstalled.
However,oftenthisisnotanissue:forexample,inthedefaultinstallationoftheApachewebserverunderRed
HatLinux,allconfigurationinformationisstoredinalocationthatisreadableby
thegeneralpublic(under
the/etcbranchofthefilesystem).Insuchcases,nogroupmembershipsarerequiredforADMtobeableto
readthisdetailedconfiguration.
SNMP
TheSimpleNetworkManagementProtocol(SNMP)isapopularandstandardprotocolforremotely
monitoringandmanagingvarioustypesofnetworknodes.Managednetworknodesareoftenregularservers,
butothernetworkdevicessuchasnetworkswitchesandnetworkprinterscanalsobemanagedusingSNMP.
SNMPisbasedonthe
notionofagentsrunningonthemanagednetworknodes.Anagentisasoftware
component,installedonthemanagednodethatcananswerremotequeriesaboutthestateofthemanaged
node.TheremotecomponentthatmakessuchqueriesistermedtheSNMPmanager.AtypicalSNMP
deploymentincludesmany
SNMPagentsinstalledonthevariousmanagednodes,andasingleSNMP
managerthatcollectsinformationfromallofthem.
ThemaindifferencesamongthethreeversionsofSNMP(1,2,and3)arethesecuritymechanisms.Versions1
and2relyonafairlyprimitivemechanismofcommunitystrings,each
definingadifferentsetofSNMP
operationsthatisperformed.Version3introducesmoreadvancedauthenticationandprivacymechanisms,
basedonusernamesandpasswords.SNMPagentsarebuiltintomostmodernoperatingsystems,butmight
needtobeturnedonorconfiguredtobeabletoproviderelevantinformation.The
informationthatisobtained
fromtheSNMPagentisdefinedinmodulescalledManagementInformationBase(MIB).ThecoreMIB,which
isavailableinmostagents,iscalledMIB‐2,anditsuppliessystemandhardwareinformation.
Detail Discovery with SNMP
ADMcanactasanSNMPmanagerandcollectinformationfromanyhostthathasanSNMPagentrunningon
it.AllversionsoftheSNMPprotocolarefullysupported.Forversions1and2,communitystringsareused.
Forversion3,youcanselecttheauthenticationandprivacymodesin
compliancewiththisnewerstandard.
SNMP Agent Deployment Recommendations
Firewall Settings
Bydefault,SNMPqueriesareperformedonUDPport161oftheagent,althoughthiscanbe changedifdesired.
IfthereisafirewallbetweentheADMapplianceandthemonitorednetwork,thisportneedstobeopenfor
connectionsthatareinitiatedbytheADMappliance.
Linux and Net-SNMP
TheSNMP
agentthatisbuiltintoLinuxdistributionsisNet‐SNMP(http://net‐snmp.sourceforge.net).This
agentrunsasaservicecalled“snmpd”andislocatedintheservicesdirectory/etc/init.d/.
ThedefaultNet‐SNMPconfigurationallowstheuseofthepubliccommunitystringwithSNMPversion2,to
querytheSNMPagent
forparticularsystemconfigurationitems.However ,thisdefaultconfigurationonly
allowsaccesstoaportionofthestandardMIB‐2informationbase.Specifically,itdoesnotallowqueryingthe
listofnetworkinterfaces,whichisaveryimportantpieceofinformation.
ToallowNet‐SNMPtoalsoreportthismissinginformation,
itisrecommendedthatyoumodifytheNet‐SNMP
configurationfilein/etc/snmp/snmpd.conf.Addthefollowinglinetothesectionofthefilethathaslines
startingwith“view”:
view systemview included .1.3.6.1.2.1.2
Windows
Windows2000isusuallyinstalledwithitsownSNMPagent.Ifitisnot,itisquicklyinstalledbyselecting:
ControlPanel>Add/RemovePrograms>Add/RemoveWindowsComponents>Managementand
MonitoringTools>Details>SimpleNetworkManagementProtocol.
Bydefault,thisserversupportsthe“public”communitystring
forqueryingsysteminformation.