Enumerate computers tool

Screenshot 127 - Enumerate Computers tool

Use the Tools } Enumerate Computers tool to identify domains and workgroups on a network. During execution, this tool will also scan each domain/workgroup discovered so to enumerate their respective computers. The information enumerated by this tool includes; the domain or workgroup name, the list of domain/workgroup computers, the OS installed on the discovered computers, and any additional details that might be collected through NetBIOS.

Computers can be enumerated using one of the following methods:

From the Active Directory - This method is much faster and will also include computers that are currently switched off.
Using the Windows Explorer interface - This method enumerates computers through a real-time network scan and therefore it is slower and will not include computers that are switched off.

Use the Information Source tab provided in the `Enumerate Computers' tool to configure your preferred method of computer discovery.

NOTE: For an Active Directory scan, you will need to run the tool (i.e. GFI LANguard N.S.S.) under an account which has access rights to the Active Directory.

Starting a security scan

The `Enumerate Computers' tool scans your entire network and identifies domains and workgroups as well as their respective computers. After enumerating the computers in a domain or workgroup, you can use this tool to launch a security scan on the listed computers. To start a security scan directly from the `Enumerate Computers' tool, right click on any of the enumerated computers and select Scan.

You can also launch a security scan and at the same time continue using the `Enumerate Computers' tool. This is achieved by right clicking on any of the enumerated computers and selecting Scan in background.

Deploying custom patches

You can use the `Enumerate Computers' tool to deploy custom patches and third party software on the enumerated computers. To launch a deployment process directly from this tool:

1. Select the computers that require deployment.

2. Right click on any of the selected computers and select Deploy Custom Patches.

Enabling auditing policies

The `Enumerate Computers' tool also allows you to configure auditing policies on particular computers. This is done as follows:

1. Select the computers on which you want to enable auditing policies. 2. Right click on any of the selected computers and select Enable Auditing Policies.... This will launch the Auditing Policies configuration Wizard which will guide you through the configuration process. For more information on how to remotely configure auditing policies on particular targets refer to the `Security Audit Policy settings' section in the `Getting started: Performing an audit' chapter.