Management Console Quick Start Guide
Introduction
GuardWare DISCOVER is a cross-platform data discovery, investigation, and remediation system that locates, analyses, and manages sensitive data across endpoint devices, file servers, email systems, and cloud storage.
This guide introduces the essential steps for quickly initiating scan jobs and getting visibility into your sensitive data landscape. A detailed Management Console guide is also available if you wish to understand each feature in depth.
The following prerequisites must be met before proceeding with this guide:
1. Install the DISCOVER Agent
A DISCOVER Agent is an application installed on an endpoint device. The device it is installed on acts as the Agent, receiving instructions from the Management Console and carrying out tasks on local or remote target devices and services, such as scanning for sensitive data and executing remediation actions.
Log in to the DISCOVER Management Console.
Navigate to ORGANISATION > Agent Configuration.
Set the LOCATION and any other necessary values, then click Update.
Go to RESOURCES > Agent Download.
Click Download MSI and wait for the download to complete.
Navigate to where you downloaded the
.msifile and double-click to launch it.Select Next and click Install.
To connect the scanning server with target devices remotely, follow the Configure Remote Access section in the GuardWare DISCOVER Agent Installation: Scanning Server guide.
2. Discover Targets
Targets are the systems and services DISCOVER scans to detect sensitive data. Properly defining targets ensures scans reach the correct data sources and provide comprehensive visibility across your environment. Start with your highest-priority systems that are most likely to contain sensitive data and expand gradually based on your organisation's risk profile and compliance requirements.
Click the tabs below to view the relevant content, or use the links provided here to navigate to the desired section.
Device targets include workstations, laptops, and file servers where sensitive data may reside.
Go to DISCOVER > Target Discovery > Devices and click +New Target Discovery.
Enter a Job Name to name the scan, and specify the Target IP range to define the network segment in which DISCOVER should search for devices.
Set the Location to filter the list of agents by their assigned location.
Select the appropriate Protocol (WinRM, SSH, or FILE SERVER) to connect to the devices and provide Authentication credentials.
Set the Connection Attempt Interval to define how frequently DISCOVER will try to connect to a target.
Set Give-up Trying After to specify the maximum duration DISCOVER will continue attempting the connection before abandoning it.
Click Save.
Cloud services extend DISCOVER's reach to data stored in external platforms, ensuring complete coverage of your digital assets regardless of location.
Go to DISCOVER > Target Discovery > Services and click +New Target Discovery.
Enter the Discovery Job name, then select the Cloud Connector for the service type (Microsoft Exchange or SharePoint).
Specify the Organisation (for SharePoint) and provide the Client ID and Tenant ID for authentication.
Set the Location to filter the list of agents by their assigned location.
Select either Client Exchange Secret or Certificate as an authentication method.
Set the Connection Attempt Interval to define how frequently DISCOVER will try to connect to a target.
Set Give-up Trying After to specify the maximum duration DISCOVER will continue attempting the connection before abandoning it.
Click Save.
3. Run Scans
After target devices are found, DISCOVER is ready to perform scans. During a scan, DISCOVER examines the selected devices and services by checking the specified directories (or all directories, if configured) and the specified file types for sensitive data.
It then searches within those files, identifying and reporting any sensitive data it detects. You can run a One-Time Scan for testing or targeted scans, or an Ongoing Scan for routine monitoring.
Click the tabs below to view the relevant content, or use the links provided here to navigate to the desired section.
A One-Time Scan checks new or changed files on the selected targets against your configured data types and classifications. Use it to validate a new rule, perform a targeted check, or test new scan configurations.
Navigate to DISCOVER > Scans and click +New Scan.
Select One-Time Scan and click Proceed.
Enter a Scan Name and give a Description (optional), then click Next.
Select the data types you want to search for and click Next.
Select the targets and services to scan, then click Next.
Configure the File Handling Options, specify the files and folders you want to include or exclude from the scan, and then click Next.
Review the scan configurations and click Save Scan. The scan will begin automatically.
An Ongoing Scan performs a full scan of selected targets and services on a recurring schedule. Use it for routine checks, to validate compliance with data-handling policies, and to maintain continuous visibility into sensitive information across your environment.
Each scan contributes to a historical record that DISCOVER uses to generate trends, enabling you to monitor changes over time, identify emerging risks, and track remedial actions. Ongoing Scans are resource-intensive, so schedule them during off-peak hours to minimise impact on business operations.
Go to DISCOVER > Scans and click +New Scan.
Select Ongoing Scan and click Proceed.
Select data types you want to search for and click Next.
Select the Targets/Services to scan, then click Next.
Configure File Handling Options and filters, then click Next.
Schedule the scan time and click Next.
Review the scan configurations and click Save Scan. The scan will automatically initiate.
Optional Configurations
You can expand DISCOVER's capabilities by configuring additional optional features. These configurations enhance your scanning scope, improve data governance, enable user accountability, and extend monitoring to cloud services.
Connect Cloud Monitor
To scan Microsoft 365 services (Exchange and SharePoint Online), you must connect DISCOVER to your Microsoft 365 environment using a Global Administrator account. Before proceeding, ensure you have the following authentication credentials ready:
Navigate to ORGANISATION > Integrations.
Click Connect Microsoft 365.
Select or add the appropriate administrator account. Make sure the account has sufficient privilege to grant the following permissions:
Read all files (SharePoint/OneDrive)
Read and write files (SharePoint)
Read Microsoft 365 groups
Read group memberships
Read mailbox content
Read and write mail settings
Full control of SharePoint sites
Read user profiles
Select Consent on behalf of your organization and click Accept.
After configuring, the following screen will be displayed, notifying of a successful connection to Microsoft 365 services.
Create a Data Owner
A data owner is a person who’s linked to one or more data types. They receive email alerts whenever sensitive data linked to them is discovered, ensuring accountability and timely notifications. The Data Owner does not have to be the same person as the device owner and can be a completely separate individual.
Go to DATA GOVERNANCE > Data Owner and click +Create Data Owner.
Enter the new data owner’s Email, Name, Phone number, Description (optional), and Contact (optional).
Click Save.
Assign or Create Data Types
Data Types in DISCOVER define what kind of information the system looks for during scans. You can either assign predefined data types from the built-in library (PII, PCI DSS) or create and assign custom data types if your data isn’t covered in the predefined data type library.
Begin with a few high-priority data types and expand them gradually as needed.
Assign Data Types
Go to DATA GOVERNANCE > Data Owner.
Select the data owner you want to assign a data type to and click +Assign Data Types.
Use the search box to find the desired data type (e.g., MasterCard), select it, and click Save to assign it to the owner.
Create Data Types
In addition to predefined data types, you can also create custom data types for DISCOVER to scan. A data owner must be created when custom data types are defined.
Go to DATA GOVERNANCE > Data Types and click +Create Data Type.
In General Information, enter the Data Type Name and Description (optional).
Select a Data Identifier from the dropdown. You can choose between three data type identifiers:
Regular Expressions (RegEx): for structured patterns such as credit card numbers, Medicare numbers, and SSNs.
Sensitive Words: for keywords or phrases that do not follow regex or filename expression patterns. Example: “salary”, “John”, or “confidential.”
Filename Expressions: for matching files by name or extension (e.g.,
*.pdf).
Assign a Data Classification to the data and add Data Owner(s) to the newly created data type.
Click Save.
Last updated