Discovery in SCCM 2012

In SCCM 2012 the discovery of users, groups and devices has been improved than 2007.

System Centre Configuration Manager 2012 discovery, fetches computers, users and network resource information  that can be managed by using Configuration Manager. Discovery creates a discovery data record (DDR) for each discovered object and stores this information in the Configuration Manager database.

What is Discovery Data Record?

When discovery of a resource is successful, discovery places information about the resource in a file that is referred to as a discovery data record (DDR). DDRs are then processed by site servers and entered into the Configuration Manager database where they are then replicated by database-replication with all sites. The replication makes discovery data available at each site in the hierarchy, regardless of where it was discovered or processed.

Discovery information can be further used to create custom queries and collections that logically group resources for managing systems such as the assignment of custom client settings and software deployments. Computers must be discovered before you can use client push installation to install the Configuration Manager client on devices.

Types of discovery in SCCM 2012.

1.     Active Directory Forest Discovery

The Active Directory Forest Discovery is a new discovery method in Configuration Manager 2012 that allows the discovery of Active Directory Forest where the site servers reside and also any trusted forest. This enables us to automatically create the Active Directory or IP subnet boundaries that are within the discovered Active Directory Forests.

Active Directory Forest Discovery should be configured on Central Administration Sites and Primary Sites.

 

2.     Heartbeat discovery

The Heartbeat Discovery method is enabled by default and is used to configure the heartbeat schedule. The heartbeat discovery runs on each Configuration Manager client and is used to create a discovery data record (DDR). This record is reported back periodically to the management point. For mobile device clients, the DDR is created by the management point that is used by the mobile device client.

The Heartbeat discovery should be configured on every Primary Site.

3.     Network Discovery

The Network Discovery method is used to discover the topology of your network and the devices on that network. The Network Discovery “service” searches your network for IP enabled resources. This is done by querying services that run an implementation of Microsoft’s DHCP, ARP tables in routers, SNMP enabled devices and Active Directory Domains.

It is  the best practice only to use this method when all other methods cannot find the devices you want to discover and manage.

Network discovery can be configured on the Central Administration Site, Primary Sites and Secondary Sites.

4.     Active Directory User Discovery

The Active Directory User Discovery is used to discover users residing under  Active Directory. Through this discovery method the resources can be configured  to discover one or more definable OUs or a complete domain, search into child containers and discover object within Active Directory groups.

What is Delta Discovery?

Delta discovery finds resources in the Active Directory that are new or modified since the last full discovery cycle.

Active Directory User Discovery should be configured on Central Administration Sites and Primary Sites.

5.     Active Directory System Discovery

The Active Directory System Discovery provides discovery options regarding OUs, scheduling and adding attributes that needs to be discovered. Two new options has been introduced in active directory system discovery.

1.        Discovery method only must discover computers that have logged on to a domain in a given period of time

2.       Discovery method only must discover computers that have updated their computer password in a given period of time.

This way discovery of  obsolete computer accounts from the Active Directory can be avoided.

6.     Active Directory Group Discovery

The old Configuration Manager 2007 System Group and User Group discovery are merged to one discovery method, which is called Active Directory Group Discovery. Besides merging the methods, Configuration Manager will now also remove devices or users from collections that are for instance removed from an Active Directory Group. This group enables us to discover Groups via a definable Location (OU or domain) or via definable Groups that are available in the Active Directory domain.

Also with the Active Directory Group Discovery it enables us to configure the “Time since last logon”  and “Time since last password update”  options. We can also  discover the membership of distribution groups.

Active Directory Group Discovery should be configured on Central Administration Sites and Primary Sites.