Discovery credentials

Discovery credentials are a collection of user names, passwords or SSH keys, and Simple Network Management Protocol (SNMP) community strings that TSA uses to access resources during the discovery.

You must set up and maintain discovery credentials for the resources that you want to discover. The access information that you provide varies by the type of credential, but usually includes at least username and password or SSH key.

A discovery credential can be applied to all scope sets or restricted to a single scope set. Defining credentials that apply to a single scope set improves the performance of discoveries and helps prevent invalid login attempts which may cause the resource to lock the account.

When you access a resource, TSA sequentially uses each credential that is associated with a particular scope set in the order that is listed on the Discovery Credentials page until the resource allows TSA the permission to access it. For example, when you are accessing a computer system, TSA uses the first username and password that is specified in the credential list for computer systems and is associated with the containing scope set. If the username and password are incorrect for a particular computer system, TSA automatically uses the next username and password that is specified in the credential list for computer systems.

Tip: Before you save the credentials, you can test whether you have specified valid credentials for system types, such as Computer System, Computer System (Windows), SNMP, or SNMPV3. This test can ensure that the credentials are validly defined.

Tip:

Use a service account with a common password for all devices of a certain type, such as AIX® or Windows™. A single credential can then be defined to discover all instances of this device type.
Use accounts with non-expiring passwords.
Use SSH keys, wherever needed.