How to establish DMZ server Discovery?

Shruti45 · ‎05-17-2022

Hello,

We have a requirement to discover DMZ servers. Do we need a special MID server for this? Also, do we need any specific type of Credentials to be added?

lastly, what will be its parent class after Discovery is successful?

Chirag K · ‎05-18-2022

Hi Shruti,

Answering your first question, It all depends on the firewalls. Are you allowed to open firewalls between your Mid Server and DMZ Network? If you are then no need of a New Mid Server, you can use the existing one. In most cases, security won’t allow opening a firewall with so many ports between Mid Server and DMZ Network. If that is the case in your organisation then it is best to host a mid server in DMZ Network, by doing that you only have to open a minimal port in the firewall between Mid Server and Instance.

Answering to your second question, there is no special type of credentials for DMZ. In DMZ also you will have Windows, UNIX, Networks, etc. So you just need credentials which will work on DMZ Devices.

Answering to your last question, there is no separate classes for DMZ. There is one CMDB CI Class Model.

Chirag

Erik25 · ‎05-12-2023

Hi Chirag,

Thank you for a clear and concise response on best practices for performing CMDB Discovery of DMZ systems! It is quite helpful!

Erik

NguyenThuy · ‎10-03-2023

Currently, Our system have error cannot connect to OCSP. After investigate and see that reason for about is IP of OCSP is dynamic IP.

However, We only can open port for OCSP by IP not URL.

So how to connect to OCSP although it is dynamic IP

Le Son · ‎10-03-2023

Our system have error cannot connect to OCSP. After investigate and see that reason for about is IP of OCSP is dynamic IP.

However, We only can open connection for OCSP by IP not URL.

So how to connect to OCSP although it is dynamic IP