Still can't find what you're looking for?Linux Connection Manager
The Linux Connection Manager enables you to scan hundreds of nodes Agentlessly using Secure Shell (SSH) as the connection protocol. Essentially working as a connection proxy, the Linux Connection Manager provides a single point of management for all configuration, logging, and updating of nodes. If you opt for the Agentless scanning of your nodes via the Linux Connection Manager, there are two methods available for installation, see Installation Methods below for more information.
Agentless Scanning
In contrast to Agent-based scanning, the Linux Connection Manager can be deployed remotely and scan hundreds of nodes per Connection Manager. Once deployed, the Connection Manager polls the Guardian appliance every few seconds to check if there are any tasks to complete. Depending on the amount of nodes in your environment, your Guardian Representative can assist with capacity planning to ensure you have the correct amount of Connection Managers required for scanning.
Each Connection Manager is assigned to a Connection Manager group. Connection Manager groups should only contain Connection Managers of the same type; Windows or Linux. Target nodes are then assigned to Connection Manager groups, to ensure that they are being scanned via the correct connection protocol. For more information about Connection Manager groups, see Connection Manager Groups.
Installation Methods
Cloudhouse offer two deployment solutions for the Linux Connection Manager. Depending on how much control you want over your network, you may prefer to opt for one deployment solution over the other. However, the scan results for both solutions are the same.
A Linux Connection Manager can be installed via one of the following methods:
-
Installable Connection Manager – The Connection Manager is installed as a package on a supported OS host. You are responsible for managing the Connection Manager for this deployment type.
-
Self-Contained Connection Manager – The Connection Manager runs as a secure, self-contained virtual machine. Only members of the Guardian Team can access and modify the internal configurations for this deployment type.
Note: Cloudhouse also offer flexible customizations of your Connection Manager's configuration to aid your deployment. For more information, see Agents and Connection Managers – Configuration.
Once you have decided on a deployment solution for your Connection Manager, you can host it within your private network. This method requires no Internet access for your target nodes to be scanned.
Installable Connection Manager
The installable Connection Manager is distributed as a Debian or Red Hat package. The package is then installed and hosted on an OS of your choice. Once installed and registered to the Guardian appliance, you are responsible for managing and overseeing the internal configurations of the Connection Manager. For more information on how to set up the installable Connection Manager, see Linux Connection Manager – Installable.
Self-Contained Connection Manager
The secure, self-contained virtual machine is available to download as an Open Virtual Appliance (OVA). The virtual machine can then be deployed behind your firewall and configured in VMWare according to your usual process. For more information on how to set up the self-contained Connection Manager, see Linux Connection Manager – Self-Contained.
Default Linux Connection Manager
By default, Cloudhouse provide a built-in Connection Manager that is separate from the remote deployment solutions described above. This Connection Manager is included as part of your Guardian instance's deployment. There is no set up required; no additional systems required to host it. It is available to scan any node types that specifically require an SSH connection protocol. For users with a small number of non-Windows nodes, this can be used in lieu of installing a Linux Connection Manager. However, if you intend to scan over a hundred SSH nodes, it may be sensible to install multiple Linux Connection Managers and organize them into groups for more efficient scanning.