Scanning credentials are login/password combinations and certificates/keys used by your Lansweeper installation to remotely access and scan network assets. The following asset types require a scanning credential in order to be scanned remotely: Linux, Unix, Mac and Windows computers, VMware servers and network devices (printers, switches...) that have SNMP enabled. For Windows computers, scanning credentials are also used during software deployment.
Your Lansweeper installation allows you to submit an unlimited number of scanning credentials. Scanning credentials are managed in the following section of the web console: Scanning\Scanning Credentials
Creating scanning credentials
To create a credential, hit the Add new Credential button in the Scanning\Scanning Credentials section of the web console. There are 6 types of credentials:
- Windows credentials - Used for scanning: Windows computers (non-Home editions) and users- Must have: administrative privileges on your computers and, for scanning domain computers/users, read-only access to Active Directory- Name: custom name you can assign to the credential- Login: a down-level logon name like NetBIOS domain name\username (domain credentials) or a user principal name (UPN) like email@example.com (domain credentials) or .\username (local credentials) or firstname.lastname@example.org (Microsoft accounts)- Password: your user account's password
- SNMP(v1/v2) credentials- Used for scanning: network devices that have SNMPv1 or SNMPv2 enabled- Must have: read-only access to SNMP- Name: custom name you can assign to the credential- Password: the (case-sensitive!) SNMP community string used by your devices. Many network devices use public and private as their default SNMP community strings, public being for read-only access and private for read/write access. Your devices could be using custom strings however.- Use SNMP(v1)/Use SNMP(v2): optionally, uncheck one of these boxes to have Lansweeper only try SNMPv1 or SNMPv2.
- SNMP(v3) credentials - Used for scanning: network devices that have SNMPv3 enabled- Must have: read-only access to SNMP- Name: custom name you can assign to the credential- Login: SNMP login- Password: your SNMP login's password- Encryption key: encryption key required if authentication type is set to MD5 or SHA1- Authentication type: None, MD5 or SHA1- Privacy type: None, DES, AES 128, AES 192, AES 256 or Triple DES
- SSH credentials - Name: custom name you can assign to the credential- Login: SSH login- Password: your SSH login's password
- SSH certificates (added in Lansweeper 6.0)- Used for scanning: Linux and Unix computers- Must have: access to the uname command- Name: custom name you can assign to the credential- Login: your login- Passphrase: your passphrase, if there is one- Private SSH key: your SSH key
- VMware credentials - Used for scanning: VMware servers- Must have: read-only access to your VMware server's MOB (Managed Object Browser)- Name: custom name you can assign to the credential- Login: VMware login- Password: your VMware login's password
Mapping scanning credentials
To map a credential, hit the Map Credential button in the Scanning\Scanning Credentials section of the web console. You can select multiple credentials by holding down Shift. Credentials are tried in the order you see them. In the example below, Lansweeper will first try Windows2 to scan computers in Workgroup, then Windows1. You can change the order in which credentials are tried by grabbing (left-click and hold) a credential in the Credentials column and dragging it to a new position.
You can map a credential to:
- A domain or workgroup- Domain or Workgroup: NetBIOS name of the domain or name of the workgroup
- An individual Windows computer- Domain\Computername: NetBIOS domain name\NetBIOS computer name or workgroup name\NetBIOS computer name
- An IP address
- An IP range- Select a range from the dropdown. Additional ranges can be submitted by hitting the Add Scanning Target button in the Scanning\Scanning Targets section of the web console and selecting IP Range from the Scanning Type dropdown.