Previous Topic: How to Register a UNIX Host in a One-Way Trust Domain EnvironmentNext Topic: Discover Privileged Accounts


Creating a Windows Agentless Endpoint

SAM can manage domain users on the Active Directory. To manage the Active Directory accounts, define a Windows Agentless Endpoint and provide the following information:

User Login

Defines the name of an administrative user who manages the endpoint. SAM uses this account to perform administrative tasks on the endpoint, for example, to connect to the endpoint, discover accounts, and change passwords.

Specify the user name in this field. Do not use the computer name/user name format or the domain name/user name format.

Example: Administrator.

Note: If you specify the Advanced option, SAM does not use the User Login account to perform administrative tasks. Instead, SAM uses the account that is specified under the Advanced option to perform administrative tasks on the endpoint.

Password

Defines the password of the administrative user of the endpoint.

Note: If you use the Advanced option, do not supply a password.

Host

Defines the Active Directory DNS domain name.

Example: company.com

Note: SAM attempts to resolve the Active Directory domain controller from the domain name. If SAM fails to resolve this name, specify the Active Directory Domain Controller (DC) DNS name or IP address.

Host Domain

Specifies the domain name (NETBIOS name).

Example: domain1

Note: Do not use the DNS name (domain1.ca.com), use the NETBIOS name (domain1).

Is Active Directory

Select this option to specify the Active Directory.

User Domain

Specifies the domain name (NETBIOS domain name) of the user specified in the User Login field or in the Advanced field (in case Advanced is used).

Example: domain1

Note: Do not use the DNS name (domain1.ca.com), use the NETBIOS name (domain1).

Advanced

Specifies whether to use a previously defined privileged administrative account, to perform administrative tasks on the endpoint. For example, SAM uses the account defined in the Advanced field to manage this endpoint instead of using the account specified in the User Login field. This option is useful when using the same privilege account to manage multiple endpoints.

Note: If you specify this option, SAM does not use the User Login account to perform administrative tasks.

Disable Exclusive Sessions

This option specifies whether to disable the exclusive sessions check on this endpoint. When selected, SAM does not check for open sessions on the endpoint.