# Linux Control Center Discover ## Requirements Linux Control Center = 2.10.X or higher Client Requirements = ## Purpose * This document aims to explain how the LCC Discover works, providing step-by-step instructions, use cases, and solutions to common issues. ## Overview * LCC Discover is the first task that should be executed after installing the Linux Control Center. Running Discover allows automated importing of network hosts. Discover does not require installing any agents on the hosts, only SSH access is needed. * To ensure optimal functionality, Discover is divided into 5 steps, each executed independently. See the description of each step below. **Host Ping** * This is the first step to find active hosts on the network. It sends pings to all addresses within the configured CIDR. When LCC receives a ping response, it reads the TTL (Time to Live) value to identify the operating system associated with the IP address. * All IPs that respond to the ping are recorded in the **IPs Alive** list during execution to be processed in the next steps. If a host blocks ping requests, it may still be found in the next steps. **Search SSH Port** * This step helps when the administrator does not know the SSH port of the target hosts. Discover scans all 65,535 TCP ports to detect which one is running SSH. Enabling this option will significantly increase execution time. Adjust **Time Out** settings in **Config Execution**, as explained in section 13 of this guide. **Test Credentials** * Correct credential input is crucial. These credentials are tested in the **Test Credentials** step. If credentials are incorrect, LCC will not be able to import the hosts. * If multiple credentials are provided, Discover will use the first one that succeeds in privilege escalation on a host, and then return to the first credential for the next host. **Import Hosts** * In this step, the host has already been identified and credentials validated. LCC connects to the host and enumerates information such as installed packages, package versions, and more for management in the LCC web console. * For Discover to succeed, the user provided must have permission to create a local account (`lcc.local`) on the remote server. **PAM** * This step integrates with BeyondTrust Password Safe to authenticate hosts using credentials stored in the vault integrated with LCC. ## Privilege Escalation * Understanding privilege escalation is essential for configuring credentials correctly. Below is a summary of each privilege escalation method. **sudo without password** * The user in the **Username** field must have permission to escalate directly to root without a password. Only the **Password** for the username is required. **sudo with password** * The **Username** must have sudo privileges, but both the user password and the **Privilege Escalation Password** (typically root's password) are needed. **None** * This option is used when the SSH user has sufficient permissions for account creation and SSH key configuration (typically the `root` user). **su -** * Logs in with the **Username**, then switches to the privileged user set in **Privilege Escalation Username** using the **Privilege Escalation Password**. ## Running Discover ### Discover with Local Credentials 1. Click **Discover** on the left sidebar. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-21bb326d248deb72da73eeb3e6c0db2766f81d0e%2Fdiscover_dashboard.png?alt=media) 2. Click **ADD**. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-35ed26e6f8bf1af20703c3aa18a02bbb388e237b%2Fadd_discover.png?alt=media) 3. Enter a name in the **Name** field. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-fdbd62c6143ec006bfb339a503a4a64f69bfbf2b%2Fname_discover.png?alt=media) 4. Click **+** in the **Credentials** section. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-886e8cb4507576142799c1990b82cd2fa721f610%2Fadd_credentials.png?alt=media) 5. Fill in the credential fields: * **Name:** Identifier for the credential.
* **Auth Type:** SSH authentication method (**Password** or **Key**).
* **Username:** SSH user.
* **Password:** SSH user password.
* **Privilege Escalation:** Select the escalation method.
* **Privilege Escalation Username:** (If required) Privileged user with permission to create accounts and modify sudoers.
* **Privilege Escalation Password:** (If required) Password for the privileged user. 6. Click **Save**. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-a4d83565300a3a508ce7a0456a790630f15aae4b%2Fsave_credential.png?alt=media) 7. Click **+** in the **CIDRs** section. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-17a71e141ae29f94ab5e9a32ff0e9f972c224dbe%2Fadd_cidr.png?alt=media) 8. Enter a **Name** for the CIDR range. 9. Enter the IP range in **CIDR** format. 10. Click **Save**. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-c4368ce80a480a810b86306144cc855432439c44%2Fcird_name.png?alt=media) 11. Click **+** in the **Ports** section. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-c478c9f67edf27641679ff0db647aafc0bc16744%2Fadd_port.png?alt=media) 12. Enter the SSH port number in the **Port** field and click **Save**. * This is the SSH port Discover will use to connect. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-b8b824fede22cbe80064a4e93534b303780ea2d7%2Fports.png?alt=media) 13. Check **Search SSH Port** if the SSH port is unknown. If enabled, do not fill the **Port** field and adjust **TimeOut** settings as explained in [Search SSH Port](#search-ssh-port). ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-b3abc11c21a3348d97bc4d729981ca6ab4a959cd%2Fsearch_ssh_port.png?alt=media) 14. Verify all fields and click **Save**. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-9f220f83202f4753a302c6cbf69e749518192659%2Fsave_discover.png?alt=media) 15. Click **Actions** > **Run Discover**. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-22a84793355cb6097ef7f4f7ad3ef103f7202d1d%2Frun_discover.png?alt=media) 16. Confirm by clicking **YES**. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-411325fa89762cb2b8125927f6564782a84feeef%2Fconfirmar_execucao.png?alt=media) 17. Monitor progress by clicking **Actions Working**. Wait until the status shows **Processed**, indicating completion. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-883096556e2212cf752bad52e4b2b6d813233c34%2Factions%20working.png?alt=media) ### Discover with BeyondTrust Password Safe Integration * Follow this guide to run Discover using credentials from BeyondTrust Password Safe: ## Credential Use Cases ### Discover with Root User * Logs in directly as `root`. The **PermitRootLogin** option must be enabled on the hosts' SSH server. **Username:** root\ **Password:** root password\ **Privilege Escalation:** **none** Example: ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-9355c66463c4704a74c7d5e17cf53cd9bd0a3a67%2Froot_user.png?alt=media) ### Discover with Non-Privileged User * Logs in with a regular user and escalates to root using **su -**. **Username:** non-privileged user\ **Password:** user password\ **Privilege Escalation:** **su -**\ **Privilege Escalation Username:** root\ **Privilege Escalation Password:** root password Example: ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-5effe11a42b380991194448ff37a8b9b3db75be5%2Fsu_escalonation.png?alt=media) ### Discover with Privileged User (sudo without password) * Uses a sudo user configured with **NOPASSWD**. **Username:** sudo user\ **Password:** user password\ **Privilege Escalation:** **sudo without password** Example: ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-19716150fc0978640c28741984e0312ff8600ae7%2Fsudo_without_password.png?alt=media) ### Discover with sudo and password * Uses a sudo user requiring the root password for privilege escalation. **Username:** sudo user\ **Password:** user password\ **Privilege Escalation:** **sudo with password**\ **Privilege Escalation Password:** root password Example: ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-1b0f5ad4f4668631f1882dd6722e8d9df43b2ef7%2Fsudo_with_password.png?alt=media) ### SSH Key Authentication * Uses SSH keys instead of passwords. > ⚠️ **Warning:** SSH key-based authentication must be configured on all target hosts prior to running Discover. This does not interfere with privilege escalation methods. **Username:** SSH key user\ **Auth Type:** **Key**\ **Privilege Escalation:** Select as needed\ **Private Key:** SSH private key Example: ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-3ef83903c0427c02fe897c89af2ba2c3919ae050%2Fcredential_key.png?alt=media) ## Host Identification Use Cases ### Discover CIDRs * Define target networks using CIDR objects. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-691dc86da59daa9e9005379ca567f17369f83fc8%2Fcidr_example.png?alt=media) * Multiple CIDRs can be used simultaneously. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-d3ada3593925fec7ff8b0f6355b410200534f23d%2F2_cidr.png?alt=media) ### CIDRs Supported by LCC | CIDR | Subnet Mask | Available Addresses | | ---- | --------------- | ------------------- | | /16 | 255.255.0.0 | 65,536 | | /17 | 255.255.128.0 | 32,768 | | /18 | 255.255.192.0 | 16,384 | | /19 | 255.255.224.0 | 8,192 | | /20 | 255.255.240.0 | 4,096 | | /21 | 255.255.248.0 | 2,048 | | /22 | 255.255.252.0 | 1,024 | | /23 | 255.255.254.0 | 512 | | /24 | 255.255.255.0 | 256 | | /25 | 255.255.255.128 | 128 | | /26 | 255.255.255.192 | 64 | | /27 | 255.255.255.224 | 32 | | /28 | 255.255.255.240 | 16 | | /29 | 255.255.255.248 | 8 | | /30 | 255.255.255.252 | 4 | | /31 | 255.255.255.254 | 2 | | /32 | 255.255.255.255 | 1 | ### Upload CIDR via CSV * Upload a CSV file with the structure: name,target\ CIDR Name,IP/CIDR ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-e0fab67d32e62f3daa2322defea876795e5f2dc0%2Fexemplo_upload_cidr.png?alt=media) 1. Click **Upload**. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-e266a0e9b9704c9d2c7c910c1acf6e632b42fd95%2Fbotao_upload.png?alt=media) 2. Click **Select File**. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-86d405ef84a6d4acb150dce65ef035bf0ca30898%2Fbotao_select_file.png?alt=media) 3. Upload the file and click **Confirm**. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-9f253f877fb7ad95bf351381e509819dd42b4984%2Fbotao_confirm_upload.png?alt=media) ### Search SSH Port * Discover will scan all 65,535 TCP ports to detect which one is running SSH. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-165589a40b47d17581e9b448e434e5a98729cb38%2Fsearch_ssh_casosde_uso.png?alt=media) * Adjust the Discover Time Out as follows: 1. Click **Config** on the left sidebar. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-c2ecd830666fdc24d2c3a23b4dea0eee70a58c82%2Fconfig_dashboard.png?alt=media) 2. Click **Parameters**. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-825b81ca437236f43fec5d1d645eaf523e699658%2Fparameters.png?alt=media) 3. Click **Discover**. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-06ce4c357ee55213ed6e00a4d8e18ea571b5302b%2Fdiscover_parameters.png?alt=media) 4. Adjust timeouts as needed. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-e3f856cd48bd70408a84577ff9b8c3cc9418ee93%2Fcampos_timeout.png?alt=media) ## Troubleshooting ### How to Get a Discover Report The LCC has a Discover Execution Report feature, which includes a summary of Hosts that were found, imported, and those that encountered failures during the process. It also provides a summary of the error to help identify the failure. 1. To get a Discover report, click **Discover** in the LCC left sidebar menu. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-6064bbe817750fce6ba49f51cb2cfdd450056438%2Fdiscover_dashboard.png?alt=media) 2. Click on the desired Discover. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-208dd5622ab9138194c06aa5a47473a3e52be6ba%2Fescolha_discover.png?alt=media) 3. Click the **Reports** tab and then click on the name of the desired Log. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-3c739d97006f0b479b3e5045f829ad5ea6db98f0%2Freport_log.png?alt=media) 4. Click **Success** or **Failed** to get the summary of imported Hosts and those that failed during any step of the Discover. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-bb85cd971234e3ff446880742e0da2c9d6fa227b%2Fhost_success_failed.png?alt=media) 5. Here is an example of a Discover with a Host having a **Failed** status. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-4b98016d331538df25f67438f4ac873b2d4ecfca%2Fresult_failed.png?alt=media) 6. You can also download the full Log by clicking **Download** on the desired report. A .zip file will be downloaded containing the report in pdf, csv, html, and xlsx formats. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-046f4821a81fcc06eebc8a9928151bea905db04b%2Freport_discover.png?alt=media) ### Host Not Imported by Discover * In some situations, a Host may not be imported into the LCC even with the correct configurations and credentials. This error usually occurs when a Timeout is exceeded in one of the five Discover steps. * The first troubleshooting step is to increase the Timeout values for the Discover steps and run it again. See how to adjust the timeout settings in the topic [Search SSH Port](#search-ssh-port). 1. To identify if the host is not being imported due to a Timeout, the "Message" field in the Discover report will be empty, as shown in the image below. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-c29e2b3a1cf5195f241be6f7bbca2780f71669f2%2Fdiscover_report.png?alt=media) ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-4a5ae7b438417bce4c7ebd9144d7194db25abe2e%2Fdiscover_report2.png?alt=media) ### Invalid Credentials in Discover 1. Click **Logs** in the LCC left sidebar menu. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-d3d542788d38a9551a8ce046d4a28be5dc9dd12f%2Flogs_dashboard.png?alt=media) 2. Click **Queue**. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-998fc31d275589aa97a664e79b4207dcc49769e7%2Fqueue.png?alt=media) 3. All tasks executed on the Hosts within the LCC will be displayed. 4. Click **LOG** for the desired **Discover LCC**. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-7f9efee6ddcbe51318160c1a58e9edfcde0cc462%2Flog_discover_queue.png?alt=media) 5. Search for the phrase **invalid credentials** to display all hosts that failed the **test credentials** step. Here are some settings that may cause an invalid credentials log: * Root user with a command interpreter (shell) set to **/sbin/nologin**, **/bin/false**, or interpreters with similar behavior. * Incorrect SSH login or privilege escalation credentials. * Root user without a password configured on the Host, especially if using the privilege escalation method "su -". ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-167f31181c596b15895d366d1018f0a0456f78a4%2Finvalid_credentials.png?alt=media) 1. Searching for the IP address of a desired Host will display all Discover steps related to that address. You can view details of each step by clicking **Expand**. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-c0ecfa9561ab0549059fe106a92531964bcd3c11%2Finvalid_credentials_ip.png?alt=media) 2. For more details on which credential is incorrect, open the Discover Report following the steps in <#how-to-get-a-discover-report>. This example uses the privilege escalation method "su -". * Example of incorrect SSH Login credentials: "invalid/incorrect password". ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-040ae4fe397a669b52afd87c2ad6ec86f2972f53%2Fsenha_loginssh_errada.png?alt=media) * Example of incorrect Root password: "incorrect su password". ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-e8d13d6dc40527a59565077f21aa41493de80ee9%2Fsenha_root_errada.png?alt=media) ## Log Interpretation ### Log Analysis in the Queue The LCC offers an intuitive log screen with features that make reading and analysis easier, such as keyword search capability. 1. Click **Logs** in the LCC left sidebar menu. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-d3d542788d38a9551a8ce046d4a28be5dc9dd12f%2Flogs_dashboard.png?alt=media) 2. Click **Queue**. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-998fc31d275589aa97a664e79b4207dcc49769e7%2Fqueue.png?alt=media) 3. All actions executed on the Hosts within the LCC will be displayed. 4. Click **Log** for the desired action. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-7f9efee6ddcbe51318160c1a58e9edfcde0cc462%2Flog_discover_queue.png?alt=media) 5. In the log window, you can get details by clicking **Expand** and download it by clicking **Download**. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-3322a13b93a3879fe548dcfd474696ae3da0a2f9%2Flog_discover_janela.png?alt=media) ### Discover Step Analysis Each of the five Discover execution steps is also logged and can be reviewed during or after the Discover run. 1. Search for the word **progress** in the Log search field. 2. Several logs will be displayed, each representing part of the execution of one Discover step. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-f635ca498d49a007e3c8365532f4504e5927b7e1%2Fphase_logs.png?alt=media) 3. Click **Expand** to read more details about the logs for the steps at the moment Discover was running. 4. Interpret the Discover steps: **Phase 1 - Ping:** Sends a Ping to all hosts based on the CIDR mask defined in the Discover. **Phase 2 - Search SSH Port:** Checks if the port defined in Discover is open or performs a port scan on all 65,535 TCP ports of all CIDR hosts to find the SSH port if the Search SSH Port option is enabled. **Phase 3 - Test Credentials:** Tests the credentials on all hosts. **Phase 4 - Import:** Imports the host into the LCC after passing all previous steps. **Phase 5 - PAM:** This step imports hosts without going through the Ping and Search SSH Port steps because the host is imported using a BeyondTrust Password Safe credential. ![](https://1620115297-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtZm19HsLxuDm2GumYKEz%2Fuploads%2Fgit-blob-296828f1b0ab6f263b0e66d464df6ad431b7a7b9%2Fphase_detalhes.png?alt=media)