Are You Confident in the Accuracy of Your CMDB? | Curvature
New Blog: Cisco UCS Blade Servers: Hardware and Support Strategies
Click here to learn more about the Cisco B200 M5 and M6 EONS updates.

Blog

Are You Confident in the Accuracy of Your CMDB?

Your configuration management database (CMDB) is an important resource, but also one of the hardest to maintain. You aren’t alone in this. Most large, enterprise-class organizations are challenged with capturing and maintaining an accurate and complete picture of the assets, software, and configurations which comprise their IT infrastructure. Like any other system, IT Asset Management (ITAM) requires a programmatic approach across people, process, and technology. Even the best ITAM software and most efficient (and documented) processes will fall short if not rigorously and routinely used by the individuals responsible.

What Might You Look For in an Automated Discovery Tool?

If you were to ask a room full of IT leaders from multiple industries and various sizes, “How confident are you in the accuracy of your IT asset inventory?” you will likely see more than a few sheepish smiles and chuckles. The reality is that capturing and maintaining accuracy and completeness is difficult. Organically over time, accuracy and completeness tend to diminish due to a lack of governance and not utilizing auto-discovery.

While some organizations may claim that their IT infrastructure is stable and consistent, the constant changes acting upon the organization force rapid changes; both from within the organization (e.g. merger or acquisition, tech refresh, movement to cloud) and from outside (e.g. PCI and/or HIPAA compliance).

Further complicating ITAM is that the information or data elements needed for each asset will change, depending upon its current use/purpose and your organization’s future initiatives or projects. For example, if an organization needs an accurate inventory in order to ensure that all key IT assets are under an appropriate maintenance coverage plan, the information and data elements needed in the ITAM repository are relatively straight-forward (make, model, serial number, rack location, etc.).

Contrast that situation with the organization who has recently merged with another and has initiated a data center consolidation project. In that case, the information and data elements needed from the ITAM repository go far beyond basic information. Now application interdependencies, communication flows/protocols, and recovery objectives become crucial elements of the ITAM repository.

CMDB Accuracy Metrics

So, how can you restore and maintain your CMDB accuracy and completeness? Our experience has shown that two concurrent approaches have proven effective: The use of discovery software (to automate the scanning of your environment), combined with manual information gathering will enable an organization to ‘get a handle’ on their IT infrastructure. However, this should not be a “one and done” approach. The best accuracy results from routinely executing scans and rigorously reviewing and augmenting the data captured.

The following are key features you should consider:

  • No impact on network or device performance
  • Automatic application dependency and web service topology mapping
  • Device relationship and communications
  • Built-in CMDB and ITAM solutions
  • Agentless network discovery via WMI, SSH, SNMO, port scan, custom probes
  • Perform deep scans of physical and virtual installs of Windows, Unix, Linux, and mac for hardware configurations, software, patches, processes, services and more
  • Various levels of discovery based on needs

Another key capability to look for is the ability to easily integrate with your existing CMDB.

IT Discovery Tool Limitations

So why would any manual effort be needed if the tool can do it?

The reality is that certain information or data elements that need to be part of your IT asset repository are simply not “discoverable” by any tool, regardless of how effective it is. Take the very simple data element of ‘asset ownership’. Is your asset owned or leased? And if leased, who is the leasing company? What is the monthly lease amount? And when does the lease expire? The software probing your network will not have access to this information – and yet these are key data elements that you would need in your asset management repository.

Here’s another example. If you were planning a data center migration or consolidation, how would you capture key information that likely resides as intellectual capital held in the mind(s) of your IT and application teams? What is the Recovery Time Objective (RTO) and Recovery Point Objective (RPO) for an application, what are the applications dependencies when migrating from one data center to another?

Manual data gathering is the means to capture these data elements or information. And there are a variety of techniques that can be employed. Techniques such as group interviews, online surveys, or system-to-system data mapping are used to validate auto-discovered data and rationalize any missing pieces.

As mentioned previously, an organization’s current strategy and IT initiatives will drive the level of discovery required. Below are three levels of discovery and the typical Use Cases addressed:

Basic Discovery

A basic auto-discovery captures the physical and virtual assets deployed in your data center(s), and generates an inventory list that can be imported into a CMDB or used for other purposes.

Use Cases:

  • Upcoming hardware maintenance renewal
  • Seed a CMDB
  • Compliance audit
  • Merger & Asquisition (M&A) planning
  • Technology refresh
  • Software licensing

Dependency Mapping

Basic discovery plus auto-discover applications and services running in your environment, with visual dependency maps, communication flows, and business service maps.

Use Cases:

Advanced Discovery

Goes a layer deeper to verify auto-discovered data and manually capture key data from application owners and IT resources, such as RTO/RPO, maintenance windows, DR testing, maintenance contracts, licensing, etc.

Use Cases:

  • Digital transformation
  • Data center migration/consolidation
  • Cloud migrations
  • Implement an ITAM solution
  • Disaster Recovery strategy & planning
  • Optimize support contracts & licensing

What benefits can you expect from instituting a routine ‘discovery’ of your IT infrastructure?

  • Improves the accuracy and completeness of your existing inventory or Asset Management system-of-record (e.g. CMDB).
  • Establishes a baseline of your infrastructure via auto-discovery, including hybrid and public cloud ecosystems. This enables better planning and optimization of your IT infrastructure.
  • Enhances security by identifying potential risks to your environment. You can’t protect what you don’t know.
  • Provides automated service maps enabling visual insight into complex relationships and dependencies through machine learning and social discovery. This will help to identify impacts to changes or outages in your ecosystem.
  • Enables better business decisions via real-time and accurate data.

What are some of the ways in which you have addressed the challenge of maintaining the accuracy and completeness of your IT asset management repository? Let’s start a conversation.

Twitter Facebook LinkedIn Instagram Youtube
2810 Coliseum Centre Drive Suite 600 28217 Charlotte, NC
+1(704)921-1620 [email protected]