Configuring discovery zones

The Trust Protection Platform Server object represents a server where one of the Trust Protection Platform products is installed. In the Trust Protection Platform Server object, you can define the Discovery Zones you want the current server to service. If the Discovery module is installed on the current server, it runs discoveries only on the designated discovery zones.

DID YOU KNOW?  A Discovery Zone is a range of Class C or higher IPv4 addresses to which the current server has network access.

Defining Discovery Zones on the Trust Protection Platform Server object provides a way to manage which servers process which discoveries.

If you do not define Discovery Zones on the Trust Protection Platform Server object, the Discovery module processes all configured Discovery objects.

To configure the Venafi Trust Protection Platform Server’s Discovery Zones

  1. From the TLS Protect menu bar, click Policy Tree.
  2. Select the Platforms tree from the Tree drop-down menu.

  3. In the Platforms tree, select the Trust Protection Platform Server object.

    You must have the View and Write permissions to the Trust Protection Platform Server object.

  4. On the Venafi Trust Protection Platform > Settings tab, in the Discovery Zones section, click Add.

  5. In the Add IP Range box, type a range of class C or higher IPv4 addresses that you want the current server to service.

    The server must have network access to the IP addresses within the designated zone.

  6. Configure the Trust Protection Platform Server settings, and then click Add.
  7. Repeat steps 4 and 5 for every Discovery Zone you want the current server to service.
  8. When finished, click Apply.