Which Windows discovery requirements are irrelevant with MS JEA?

Go to solution
Marek Meres
Tera Expert

‎03-28-2022 05:21 AM

Hello Community,

I have been told by security that granting our discovery user local administrator permission on the Windows machines is out of question and we need to find an alternative. So I thought about MS JEA but after reading the documentation I am still not clear which part of the "regular" Windows discovery requirements still apply when using this approach. For instance admin$ share, access to WMI and registry keys... Or is it enough to follow the aforementioned docs page and referenced there KB0965705 in order to have (at least basic as stated there) discovery of the Windows machines?

Thanks in advance for sharing your experience!

Best regards,

Marek

Labels:
0 Helpfuls
  • 1,647 Views
1 ACCEPTED SOLUTION

Go to solution
Kedar6
ServiceNow Employee
ServiceNow Employee

‎03-30-2022 02:53 AM

Both approaches are having unique requirements except enabling PowerShell Remoting on the Target Servers.

1. For JEA, PowerShell 5.0 or Windows Management Framework 5.1 is required to be installed on Targets. Whereas for Regular discovery, PowerShell versions 3.0 to 5.1 are supported
2. The JEA credentials with non-administrator rights must be domain-level credentials. For Regular discovery, the credentials used in the discovery should have local admin access to targets.
3. For JEA, the MID Server and target server must be part of a Windows domain.
In Regular discovery, you can use multi-domain configuration. If you want the MID Server to use the credentials of its own Windows service, you will have to grant local admin access to that service account. Please refer to the section: "Configure Windows credentials for the MID Server" from the following: https://docs.servicenow.com/bundle/sandiego-servicenow-platform/page/product/credentials/reference/r_WindowsCredentialsForm.html#config-win-credentials-mid-server
4. CMDlets are restricted in JEA whereas in regular discovery, the user can run any cmdlets on the target.

I highly recommend you to go through the following DOCs/Articles for more details:

JEA discovery -
KB0782125
KB0697317
Windows JEA Discovery

Regular Windows Discovery -
Windows Credentials
Windows Probes and Permissions
Windows Discovery

View solution in original post

10 REPLIES 10

Go to solution
ServiceNow Tec2
Mega Sage

‎04-06-2022 02:29 AM

This has been resolved by ServiceNow Technical Support. Please refer to KB0753041 for more information.
0 Helpfuls

Go to solution
ServiceNow Tec2
Mega Sage

‎04-06-2022 02:29 AM

This has been resolved by ServiceNow Technical Support. Please refer to KB0696862 (HI login required) for more information.
0 Helpfuls

Go to solution
ServiceNow Tec2
Mega Sage

‎04-06-2022 02:29 AM

This has been resolved by ServiceNow Technical Support. Please refer to KB0813330 for more information.
0 Helpfuls

Go to solution
ServiceNow Tec2
Mega Sage

‎04-06-2022 02:29 AM

This has been resolved by ServiceNow Technical Support. Please refer to KB0697317 (HI login required) for more information.
0 Helpfuls

Go to solution
ServiceNow Tec2
Mega Sage

‎04-06-2022 02:29 AM

This has been resolved by ServiceNow Technical Support. Please refer to KB0782125 (HI login required) for more information.
0 Helpfuls