Description
The LANDesk agent for Solaris is includes only the ability to do inventory scanning and vulnerability scanning and works on Solaris 8 and 9 only. There are no
A single package exists that is installed by decompressing the packaging with gunzip and installing the package with pkgadd.
Installing the LANDesk Agent for Solaris
To install the LANDesk Agent on Solaris 9, do the following:
1. Copy vulScan-8.6.0.1-sol9-sparc-local.gz to the Solaris server. Place the file in /tmp or else take note of where on the Solaris server the file was copied.
2. Connect to the Solaris server using ssh.
3. Run the following commands:
cd /tmp gunzip vulScan-8.6.0.1-sol9-sparc-local.gz pkgadd -d ./vulScan-8.6.0.1-sol9-sparc-local
4. Edit the /etc/vulScan.conf and change the core = EXXPEEE.landesk.com value to be your Core Server.
5. Also change the platformid to be one of the following: (Paste this in and delete the comment from before the correct version.)
#platformid solaris7 #platformid solaris8 #platformid solaris9
6. Run an inventory scan.
/usr/LANDesk/ldms/ldiscnux -ntt=CoreServer.domain.tld:5007 -v
Installation is complete
File Information
The following files are contained in this archive:
Filename | Full Path | Description |
|---|---|---|
vulScan | /usr/LANDesk/ldms/vulScan | LANDesk Patch Management vulnerability scanner binary |
vulScan.conf | /etc/vulscan.conf | configuration file for vulScan |
ldappl.conf | /etc/ldappl.conf | applications definition file for ldiscnux |
ldiscnux | /usr/LANDesk/ldms/ldiscnux | LANDesk Management Suite inventory scanner |
ldiscnux.8 | /usr/local/man/man8/ldiscnux.8 | man page for ldiscnux |
ldiscnux.conf | /etc/ldiscnux.conf | configuration file for ldiscnux.conf |
Prerequisite Software
The following dependencies are required for the LANDesk agent to function.
libstdc++.so - version 5.0.4 or later
vulScan was compiled against libstdc+.so version 5.0.4 and has not been tested with earlier versions.
libstdc+ is part of the gcc package and can be found at:
ftp://sunsite.cnlab-switch.ch/mirror/solaris-freeware/sparc/8/libgcc-3.3-sol8-sparc-local.gz
libexpat.so - version 0.5 or later
libexpat is the xml parser library used in vulScan.
libexpat.so is part of James Clark's Expat XML parser library. Expat downloads can be found at:
http://sourceforge.net/projects/expat/
Using the ldiscnux Inventory Scanner
ldiscnux can be automated by use of the crontab command to cause the system to be rescanned on a periodic basis. When sending scans to a server using -ntt=. Software scans will be performed once a day (unless forced with the -f switch) as determined by the inventory server. (See Configure | Services | Inventory in the LANDesk Console on the Core Server). The extent of the software scan can be controlled by the ldappl.conf file (see bottom of this doc).
To debug the inventory scanner you can output a scan to a text file with the followign command:
ldiscnux -o=scn.txt
This method enables you to see if the scanner is working locally on the computer. You can then run the inventory scanner to the LANDesk Core Server via IP socket (5007 by default) using this command:
ldiscnux -ntt=192.168.121.1 -f
The syntax for ldiscnux is as follows:
xLANDesk(R) Inventory Scanner (Solaris) Version 6.6 Copyright (c) 1999-2003 LANDesk Software Inc. All Rights Reserved. ldiscnux [-d=] [-f]|[-f-] [-i=] [-ntt=] [-o=] [-stdout] [-v] [-x] [-h]|[-?] -d=Dir Starts the software scan in the Dir directory instead of the root directory. -f Forces a software scan. -f- Forces no software scan. -i=ConfName Specifies the conf filename. Default is /etc/ldappl.conf. -ntt=addr:port Host name or IP address of inventory server. Port is optional. -o=File Inventory information is written to the specified output file. -stdout Inventory information is written to standard output -v Enables verbose status messages during the scan. -x Enables software scanning of network file systems (i.e. smbfs or nfs). -? or -h Displays this help screen. One of -ntt, -o or -stdout is required for the scanner to function. Ex: ldiscnux -ntt=123.456.10.11 -o=out.txt
The Device ID is maintained in the /etc/ldiscnux.conf file.
Last Software Scan Date=1224631115
Last Hardware Scan Date=1224631114
Device ID={39373938-3632-3233-3039-373938363232}
Using the vulScan Vulnerability Scanner
vulScan: LANDesk Vulerability scanner usage: vulScan [-f <filename>] [-vhsuv] [-o filename] -f <cfgfile> use <cfgfile> for configuration information -o <outfile> writes the results sent to the core to <outfile>. -v more verbose output (one or more times) -h show this and exit -s scan but don't bother to update the vulnerability cache -u update definitions cache only -V show version and exit
The /etc/vulScan.conf file must have the correct Core Server name manually entered.
core = YourCore.Domain.tld