EUC devices discovery

Sudharshan Mohi
Tera Contributor

Hi Team - We have EUC devices(Desktop, Laptops, Tablets) to be discovered as part of deliverables. Would like to understand what is the best approach procs and crons if we have to go proceed with any one of the below options.

1) Credential based discovery

2) Agent based through ACC

 

7 REPLIES 7

Thanks David. But the query is more related to credentials if we want to discovery Desktops, tablets, laptops. Is the service account with local admin configured in domain account can be used or we need explicit for EUC devices ?

It would depend on the types of EUC devices that you have. If they are domain joined windows desktops/laptops/tablets etc, then any existing domain account with local admin rights on those devices would be OK. If they are not domain joined, you might need to look at a common local account across them all, although is some places that might be considered a security risk.

Sometimes, security teams might prefer that you use a different account for EUC vs Server just to minimise risk exposure - probably a good practice as EUC devices typically sit in environments where other devices can be plugged into the network that might be able to sniff out credentials, whereas Servers will generally be in a data center which is far more controlled.

If they are other types of devices and not domain joined, it probably gets a little more complicated - generally that is where SG connectors for Intune/SCCM/Jamf etc come into play

Hope that helps?

Thanks David for your response. However do have query if all the EUC devices will be discovered from local domain account which is used currently for discovery of windows hosts. Do we have any limitation on EUC through local domain account credentials. My understanding is mobile devices, tablets may not be discovered.