Managing Nodes
==============

Adding Nodes
------------

Genian NAC automatically detects active nodes and registers them in the node
list. Also, You can pre-register and use a node when you allow or deny a node
before the node has access to the network.

#. Go to **Management > Node** in the top panel
#. Click **Tasks > Node and Device > Add Node**
#. Fill out the **Add Node** up to the panel.

You can register the node by entering IP only, MAC only, or both.(*Other values
are optional*)

 #. **IP** as ``IP address``
 #. **Additional IP** Select this when you want to register multiple
    consecutive IP nodes.
 #. **IP Policy** Select when you want to use a specific IP policy.
      -  **Allow IP**
      -  **Allow IP for Specific MACs**

 #. **Start** Select the start date and time in the calendar. Set the
    availability start period for the node.
 #. **End** Select the end date and time in the calendar. Set the
    availability end period for the node.
 #. **IPAM Policy for New Node**
      -  **Allow MAC**
      -  **Enable Conflict Prevention**
      -  **Enable Change Prevention**
      -  **Enable Conflict Prevention / Change Prevention**


 #. **MAC** as ``MAC address``
 #. **MAC Policy** Select when you want to use a specific MAC policy.
 #. **Start** Select the start date and time in the calendar. Set the
    availability start period for the node.
 #. **End** Select the end date and time in the calendar. Set Set the
    availability end period for the node.

 #. **Sensor** The node selects the location of the sensor to be registered.
 #. **Node Type** Select the type of node to be registered.
 #. **Node Delete-Prevention** Select whether the node can be deleted. ``on``
    or ``off``
 #. Configure additional fields (if applicable)
 #. Click **Save**

Add Multiple Nodes
------------------

You can register multiple nodes at once using CSV file.

#. Go to **Management > Node** in the top panel
#. Click **Tasks > Node and Device > Import Nodes**
#. Click **Select file** **CSV** menu in **Import Nodes** up to the
   panel.
#. Select the CSV file that you created for the format on your file explorer.
#. Select the appropriate **Sensor** from the drop-down menu where the node
   will be registered.
#. Click **Import**

.. note:: If the format in the CSV file is not correct, the node is not
   registered.

Remove Node
-----------

You can delete inactive Node data to better organize the networks Node view.
You can delete inactive Nodes through policies, or manually delete Nodes as
they are no longer found on the network.

Manually Remove Inactive Nodes
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

#. Go to **Management > Node** in the top panel
#. Find desired inactive Nodes. Click **Checkbox**
#. Click **Tasks > Node and Device > Remove Node**

.. warning:: If a connected and running node is accidentally deleted, that node
   will instantly re-register.

Remove Inactive Nodes Through Policy
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

#. Go to **Policy** in the top panel
#. Go to **Policy > Node Policy** in the left Policy panel
#. Find and click **[Policy Name]** in the Node Policy panel
#. Find **Management Policy > Deleting Down Node** in the Node Policy panel
#. Set a time for deleting Nodes after a period of inactivity : ``30`` (*If a
   Node is offline for a certain period of time, it will be deleted
   automatically. Default is 30 days*)
#. Click **Update**
#. Click **Apply** in top right corner

Remove Outdated Node
^^^^^^^^^^^^^^^^^^^^

The Policy Server keeps Node information by default up to 3 days after an IP
has been changed.

#. Go to **Preferences > General > Node**
#. Find **Lifetime > Keeping Outdated Node** in the Node
#. Set a time for deleting Nodes after a period of outdated Node information by
   IP address change : ``3`` (*Default is 3 days*)
#. Click **Update**
#. Click **Apply** in top right corner

Monitoring Node Host Names
--------------------------

New Nodes can be screened for compliance with a host name policy.

You can define the allowed host name for nodes per their Node Policy.
Criteria for allowed node policy can be constructed based off authenticated
User Attributes , IP address or regex.

#. Go to **Policy** in the top panel #. Go to **Policy > Node Policy** in the
   left Policy panel 
#. Find and click **[Policy Name]** in the Node Policy
   panel
#. Find **Management Policy > Hostname Policy for New Node** and select **On**.
#. Enter your standard hostname, or click **Use Template** to define a
   compliant host name scheme.

Windows host names may also be changed using the Change Computer Name plugin.

See: :doc:`/endpoints/computer-name`

Using Node Bucket
-----------------

The Node bucket is a a grouping tool that can be used for various
administrative purposes such as testing or monitoring. It cannot
be used for Policy.

Add to Node Bucket
^^^^^^^^^^^^^^^^^^

#. Go to **Management > Node** in the top panel
#. Find the desired node(s) and Click the **Checkbox** on the left of the
   entry. 
#. Click **Tasks > Node and Device > Add To Node Bucket**
#. Click **Ok** (*Nodes added to your Node Bucket will appear in the Management
   > Node view*)

Remove from Node Bucket
^^^^^^^^^^^^^^^^^^^^^^^

#. Go to **Management > Node** in the top panel
#. Go to **Sensor Tab > Node Bucket** in the left panel
#. Find **Node** from **Node Bucket** window. Click **Checkbox**
#. Click **Empty** button in top right (*To clean the entire Node Bucket. Click
   Empty All*)