If you plan to run security scans as well as manage patches and retrieve information from Microsoft Windows-based scan targets, ensure that the following variables are configured:
Ensure that the following services are running on the GFI LanGuard server:
Ensure that File and Printing Sharing is enabled and that the credentials used, have administrative rights to access remote computers.
Microsoft Windows XP has a policy that interprets users outside the domain as Guest users and the account is disabled, by default. In this situation you will receive this message in GFI LanGuard:
Error (1326) Logon Failure: unknown user name or bad password.
To change access rights settings and resolve this issue:
NOTE: In operating systems later than Microsoft Windows XP, Network access security settings are configured properly by default. If you, however, experience the above problem on machines running Windows Vista and Windows 7, follow the steps above to change the access rights settings for that scan target.
NOTE: This information applies to Microsoft Windows XP scan targets only.
In Microsoft Windows XP Professional, Simple File Sharing is enabled by default. Simple file sharing stops GFI LanGuard from accessing certain components of the system remotely.
To disable Simple File Sharing:
WARNING: For Microsoft Windows XP Home Edition, you cannot perform the mentioned changes and therefore remote scanning results in limited information retrieval and processing.
Firewall Ports and Permissions
GFI LanGuard and Relay Agents
Ensure your firewall is configured to allow Inbound connections on TCP port 1070, on computers running:
This port is automatically used when GFI LanGuard is installed, and handles all inbound communication between the server component and the monitored computers. If GFI LanGuard detects that port 1070 is already in use by another application, it automatically searches for an available port in the range of 1070-1170.
To manually configure the communication port:
Agent and Agent-less computers
Ensure your firewall is configured to allow Inbound requests on the ports in the table below, for: