How to scan Windows computers with the LsPush scanning agent

Lansweeper includes several scanning methods to scan the assets in your network. You can scan the Linux, Unix, Mac and Windows computers, VMware servers and other devices in your network without installing any Lansweeper software on the machines you're scanning. For Windows computers, you can optionally choose to perform your scans with a scanning agent, however. Lansweeper's scanning agent is called LsPush.

How to scan with LsPush

There are many ways to run LsPush on your machines. Basically any process that can run the LsPush executable, preferably with a parameter, can trigger LsPush scans of your machines. LsPush scans can be fully automated for instance by integrating the scanning agent into logon scripts, group policies or scheduled tasks. These are just some of the ways you can perform LsPush scans:

  • Using a group policy. This allows you to scan domain computers as soon as users log into them.
    This knowledge base article contains a complete guide on how to scan with LsPush in a group policy.
  • Using a scheduled task. This allows you to scan workgroup computers as soon as users log into them.
    This knowledge base article contains a complete guide on how to scan with LsPush in a scheduled task.
  • From a USB drive. This can for instance be used to scan stock computers.
    This knowledge base article contains a complete guide on how to scan from a USB drive with LsPush.
  • By manually launching the executable. This can for instance be used to scan remote or stock computers.
    This knowledge base article contains a complete guide on how to run manual LsPush scans on computers.

What LsPush is

LsPush is a small executable that, when run on a Windows computer, scans the computer locally. The LsPush scan results can be sent directly to your Lansweeper server for automatic processing or stored in a file, which can be imported into your Lansweeper installation later on. LsPush is a true scanning agent, as the LsPush executable itself scans the computer and does not require your Lansweeper installation to perform the scan.

LsPush is not a program that is permanently installed on your computers. It is a lightweight executable that must simply be run on the Windows computer whenever you want to scan the machine. Executing LsPush can be fully automated by integrating the scanning agent into logon scripts, group policies or scheduled tasks.

Where to find LsPush

The LsPush executable can be found in the folder below on your Lansweeper scanning server, i.e. the server hosting your Lansweeper Server service. LsPush does not need to be downloaded separately.

  • Program Files (x86)\Lansweeper\Client
    LsPush.exe in Program Files (x86)\Lansweeper\Client
    When you update your Lansweeper installation, the latest version of the LsPush executable is automatically added to the Client folder on your Lansweeper server. Make sure to use the latest LsPush executable to scan your machines, as scanning with old agents can cause incomplete data to be returned. If you have just updated Lansweeper and are scanning with LsPush in a logon script, group policy or scheduled task, copy the up-to-date LsPush to any folder referenced by your script, policy or task.

Why use LsPush for scanning

LsPush largely scans the same data as agentless scanning methods. Because it scans locally, LsPush has several advantages over agentless scanning however:

  • LsPush does not require you to submit scanning credentials.
  • LsPush does not require administrative privileges to be able to scan.
  • LsPush does not require you to reconfigure your Windows computers' firewalls for scanning.
  • LsPush is immune to almost all scanning errors, including access denied and firewall errors.
  • LsPush can scan computers of your remote employees, after which the results can be imported back into Lansweeper.
  • LsPush can scan computers running a Windows Home edition.
  • LsPush generates very little network traffic, only around 40KB for one scanned computer.
  • LsPush can be integrated into logon scripts, group policies, scheduled tasks, custom scripts etc.

How data scanned by LsPush reaches your Lansweeper installation

How data scanned by LsPush reaches your Lansweeper installation depends on how you are running LsPush and which parameters you are using:

  • Direct server connection
    If the machines you're scanning are in the same network as your Lansweeper installation or have a connection to the installation through for instance a VPN, scanned LsPush data can automatically be sent back to Lansweeper. For this, the name of your Lansweeper scanning server must be included in your LsPush command. By default, your Lansweeper server listens for LsPush data on port 9524, but a custom port can also be configured by submitting it in the following section of the web console and restarting the Lansweeper Server service: Configuration\Server Options

    Server Options menu
    configuring the LsPush port

     From Lansweeper version 6.0.100 onward, scanning servers running Windows 7, Windows Server 2008 R2 or a more recent operating system use HTTPS instead of HTTP to handle incoming requests by the LsPush scanning agent. As a result, only the most recent version of LsPush will still be able to connect to 6.0.100 scanning servers. Make sure to implement the new LsPush executable in any logon scripts, group policies or other scheduled jobs you're using to run the scanning agent. Use of older LsPush versions will result in socket errors similar to the one below.

    Connection to server failed Socket Error # 10054
    Connection reset by peer.

  • Manual import
    If the machines you're scanning do not have a connection to your Lansweeper installation, scanned LsPush data can be saved in text files. These files must be placed in the folder below on your Lansweeper scanning server, where they are automatically processed. When the files have disappeared from the import folder, the import process has completed and the machines can be found in the web console.

    Program Files (x86)\Lansweeper\Service\import
    importing LsPush scan results
    It is critical that no changes are made to the extension or contents of the files generated by LsPush prior to placing them in the import folder. File changes can cause import failures.
    LsPush files are compressed and hence not human-readable in their raw form. The Lansweeper scanning service decompresses and reads the data when the files are imported.

What parameters LsPush accepts

The LsPush executable recognizes and accepts several parameters:

  • When LsPush is initiated without parameters, by simply double-clicking the executable, the computer is scanned, an on-screen progress bar is shown and the scan results are attached as a text file to a draft email. This is so you can easily send the results to whoever is managing your Lansweeper installation, where the results can be imported.
  • <IP address or name of your Lansweeper scanning server>
    When included in your LsPush command, the computer is silently scanned and the scanned data is sent directly to your Lansweeper scanning server for import. By default, your Lansweeper server listens for LsPush data on port 9524.

    Examples:
    lspush.exe LAN-001
    lspush.exe 192.168.1.50
  • <port>
    Optional parameter to accompany the scanning server parameter. When included in your LsPush command, the computer is silently scanned and the scanned data is sent to the port on your Lansweeper scanning server specified by you. Inclusion of this parameter is not required if your Lansweeper server listens for LsPush data on default port 9524. If you do decide to use a custom port, the custom port must also be submitted in the following section of the web console and the Lansweeper Server service must be restarted: Configuration\Server Options

    Examples:
    lspush.exe LAN-001 9500
    lspush.exe 192.168.1.50 9500
  • /showresult
    Optional parameter to accompany the scanning server parameter, mostly used for testing and troubleshooting purposes. When included in your LsPush command, the computer is silently scanned, the scanned data is sent to your Lansweeper scanning server and you receive visual feedback as to whether the connection to the Lansweeper server succeeded. The success or failure popup is generated when the computer scan has completed, so it may take half a minute or so to appear.

    Examples:
    lspush.exe LAN-001 /showresult
    lspush.exe 192.168.1.50 /showresult
    lspush.exe LAN-001 9500 /showresult
    lspush.exe 192.168.1.50 9500 /showresult
  • /file
    When included in your LsPush command, the computer is scanned, an on-screen progress bar is shown and the scanned data is stored in a text file in the %localappdata%\Temp\lspush folder on the computer. This file can then be placed in the import folder of your Lansweeper scanning server for processing.

    Example:
    lspush.exe /file
  • /folder
    When included in your LsPush command, the computer is silently scanned and the scanned data is stored in a text file in the folder specified by you. This file can then be placed in the import folder of your Lansweeper scanning server for processing.

    Examples:
    lspush.exe /folder "c:\users\lan\downloads"
    lspush.exe /folder "\\LAN-001\sharedfolder"

Related Articles