Help Center
Log in
Log in

How can we help?

Common topics:

AI, Tickets, Agents
Help Center
MSP
IT Department
In this Article:

    Related articles

    1. Atera Support
    2. Library
    3. App Center and integrations
    4. Network monitoring

    Network Discovery: domain controller vs workgroup scans

    Julian Kudo

    Network Discovery supports two scan types: Domain Controller (DC) and Workgroup (WG). Each works a little differently and provides a different level of network visibility.

    Note: We recommend running scans via a Domain Controller for the most complete and detailed view of your network. But if you’re scanning a Workgroup, that’s fine too — both get the job done!

    Check out this video guide on workgroup support in Network Discovery.

     

    Scanning and credentials

    Domain controller scans require domain credentials to run.

    Workgroup scans do not require credentials to perform the scan itself.

    However, installing agents requires credentials in both cases. You can enter them manually or request the end user to enter them via a toast notification.

    Note: Credentials are securely stored by Windows Credential Manager on the local scanning agent.

     

    Data and visibility

    Domain controller scans retrieve the most complete network information, offering deeper insight into devices and configurations. They include data on storage devices (disk type, usage, partitions, age, and interface) and OS aging information.

    Workgroup scans provide full visibility into workstations, servers, and SNMP devices, but do not include storage device data.

     

    How it works

    Both scan types use Nmap OEM and Npcap OEM to detect and analyze devices on the network. These tools are installed automatically on the scanning agent the first time you start a scan. Devices discovered by Network Discovery do not have Nmap or Npcap installed. Nmap allows Network Discovery to extract detailed information from endpoints, resulting in more accurate scan results.

    For more info on setting up scans, see Network Discovery: Set up scans

     

    After the scan

    Once a scan is complete, you can:

    • Automatically or manually install the Atera Agent on discovered Windows devices.
    • Automatically or manually monitor detected SNMP devices and apply existing SNMP monitoring templates to them.
    • View reports that display device types, OS platforms, monitoring status, and network vulnerabilities.
    • Investigate open ports and potential CVEs.
    • Export scan results (workstations, SNMP, and security data) as an Excel file for further analysis.

    For more info, see Network Discovery: scan results and actions

     

     

     

    Copyright © Atera Networks Ltd.2023

    apple store app google play app

    AICPA SOC for Service Organizations and ISO 27001 certified