This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject

Some users may be experiencing issues when trying to access customer resources like the Case Portal or the Product Licensing Center. Our team is aware of the issue and is working to resolve it. Click here for more information.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

FlexNet Agent Usage – Security Questions and Required Permissions

echouikha
By
Level 2

Hello everyone,

During the implementation of FlexNet Manager, we frequently encounter questions from security teams, especially regarding the use of agents and the permissions needed for them to operate effectively.

I'm convinced that using high-privilege accounts, such as LocalSystem on Windows and root on Linux, maximizes the chances for agents to run smoothly and without interruptions.
In my understanding, the documentation also indicates that some functionalities, like Oracle scanning, cannot be performed with limited privileges (Oracle Discovery and Inventory Doc). 

My goal here is to get information on :

  • Listing System Commands: I’d like to find a detailed list of the specific system commands used by the FlexNet agent for scanning purposes (there is some details the Gathering Flexnet Inventory Documentation but seems to be only specific commands not the basic ones used by the agent). This would help to explain to security teams that the agent is strictly collecting data and that no additional commands outside of those for scanning can be executed by users.
  • Permission Comparison: Could anyone share a comparison of the pros and cons between using high-privilege accounts (LocalSystem/root) versus accounts with restricted privileges? Specifically, I’d like to understand how these choices affect data collection, the frequency of scan failures, or the range of available functionalities.

Thank you in advance for your insights and advice!
Any information to improve transparency with security teams is greatly appreciated.

‎Nov 13, 2024 07:53 AM

(0) Replies