How To Query Workgroup Computers in Control Compliance Suite (CCS) for Windows

Article:TECH113909  |  Created: 2007-01-02  |  Updated: 2011-10-05  |  Article URL http://www.symantec.com/docs/TECH113909
Article Type
Technical Solution


Issue



How to Query Workgroup Computers with bv-Control for Windows.

 


Solution



Configure local admin accounts on each target computer in the workgroup, then install a Master Query Engine (MQE) in the target workgroup. Build a scope file to query the workgroup computers.

    1. On each computer to be queried, create a local service account (same name and password on all of the machines) and add it to the local admins group.
        • WARNING: DO NOT proceed without completing step #1.
    2. Launch BV-CONFIG. Click Object > Options > Domain Settings Tab.
    3. Select the "Add Domains In Browser" radio button, then add the Workgroup name.
    4. In the left pane in bv-Config, click the Workgroup name on the left.
    5. On the right Details Pane in bv-Config, right-click in a blank area. Select Filter Computers from the floating menu.
    6. Click the Select All Button, then click OK.
        • NOTE: All computers in the workgroup should show up under WORKGROUP in the left column.
    7. Right click the PC that you want to host the MQE, then click Supply Computer Credential on the floating menu.
    8. Supply the credential that you created in Step 1.
        • syntax {COMPUTERNAME.EN_US} \ {ACCOUNTNAME.EN_US}
    9. Right-click the PC you want to be the MQE again, then click Install Query Engine.
    10. The Install QE wizard guides you through the installation process.
    11. If "Using Credentials for Query" as indicated in User Manager, then open Credentials Manager.
        1. Double click the Credentials Database then supply the password.
        2. Click the ADD button at far left bottom under "Credential Operations".
        3. Click the bv-Control for Windows Tab, then expand the Query Credentials folder.
        4. Expand Microsoft Windows Network, click the Workgroup name, then drag the PC Name to "Selected Items" at the bottom.
    12. In the RMS Console at the bottom, right-click bv-Control for Windows, click Configuration > Connection Database.
    13. Highlight the new MQE then click Add.
        • NOTE: The new MQE moves from the bottom to the top.
    14. Run a test query against the MQE. If it is successful, continue to the next step. Otherwise, repeat the previous steps.
    15. Specify the local service account and password in bv-Config.
        • NOTE: This is the account with local admin rights on the MQE (see step #1)
        1. Open bv-Config, click the workgroup name.
        2. Press F5 to "Refresh".
        3. Verify the new target PC shows up in the list.
    16. In bv-Config, right-click the Target PC then click Supply Computer Credential (refer to step #1)
        • -syntax {COMPUTERNAME.EN_US}\ {SERVICEACCOUNTNAME.EN_US}, where {COMPUTERNAME.EN_US} is the name of the new target PC and {SERVICEACCOUNTNAME.EN_US} is the account with local admin right (e.g. bvadmin).
    17. Create a new scope file (.TXT file) with the following syntax
        • {MQENAME.EN_US},{COMPUTER2QUERY.EN_US} where:
            • {MQENAME.EN_US} = computer name of the Master Query Engine
            • {COMPUTER2QUERY.EN_US} = computer name of target computer

        Sample Workgroup Scope File For a workgroup containing two target computers, WG_HOST1 and WG_HOST2 for example, in which one of the hosts (WG_HOST1) is an MQE, the correct format of the scope file for that workgroup is:
          WG_HOST1,WG_HOST2
          WG_HOST1,WG_HOST1
        NOTE: The computer that hosts the workgroup's MQE must be the last line entry of scopefile. Other Workgroup computers included for queries must be listed above the last entry for the MQE.
      1. Save the scope file to X:\ PROGRAM FILES \ BINDVIEW\RMS \ CONTROL \WINDOWS \ SCOPEFILES, where X:\... is the default installation path for the RMS Console.
      2. Run a test query using the new scope file.
          • NOTE: On the SCOPE Tab choose Advanced Scopes then scope to the previously created .TXT file.




     



    Legacy ID



    2007899520874098


    Article URL http://www.symantec.com/docs/TECH113909


    Terms of use for this information are found in Legal Notices