Agent Client Collector File-Based Discovery

  • Release version: Yokohama
  • Updated May 4, 2026
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Agent Client Collector File-Based Discovery

    Agent Client Collector File-Based Discovery (FBD) enables ServiceNow customers to scan file systems on managed endpoints to discover installed software and maintain accurate file inventories. Running as a lightweight background process within the existing Agent Client Collector agent, FBD is fully configured and controlled from the ServiceNow instance. Administrators specify directories to scan, target files, and scan frequency. Discovered files are reported with metadata such as name, path, size, and version, and stored in the CMDB and relevant application tables.

    Show full answer Show less

    Key Features

    • Activation and Configuration: Enable FBD via the Discovery Configuration Console in ServiceNow by toggling the Enable File Based Discovery switch. Configuration and system properties are managed centrally.
    • Supported Platforms: Compatible with Windows, Linux, and macOS endpoints.
    • Required Plugins: Requires activation of File-Based Discovery, Software Asset Management - File Signature Normalization (auto-activated), Agent Client Collector - Visibility Content, and Software Asset Management Professional plugins.
    • Delta Scanning: Optimizes performance by sending only file changes (added, modified, deleted) after an initial full scan. A full scan is forced periodically to ensure data accuracy. Note that delta scanning does not apply to SAM or SWID policies, which always perform full scans.
    • Archive File Scanning: When enabled, FBD inspects ZIP and JAR archives to report contained files without decompressing them, collecting metadata only. It applies the same filtering rules as for regular files, helping discover embedded software artifacts. This feature is disabled by default and must be enabled via a specific system property requiring discoveryadmin role.

    Practical Benefits

    • Enables comprehensive, automated discovery of installed software and file inventories across multiple operating systems.
    • Improves data accuracy and reduces network load through delta scanning by reporting only changes after the initial scan.
    • Supports discovery of packaged software components inside archive files, extending visibility into software assets.
    • Integrates seamlessly with CMDB and Software Asset Management applications for improved asset management and compliance.
    • Centralized management within ServiceNow simplifies configuration and ongoing control of discovery processes.

    Agent Client Collector File-Based Discovery (FBD) scans file systems on managed endpoints to discover installed software and track file inventories.

    FBD runs as a lightweight background process within the existing Agent Client Collector agent. It is configured and controlled entirely from the ServiceNow instance. Administrators define which directories to scan, which files to look for, and how often to scan. The agent discovers matching files, collects metadata such as name, path, size, and version, and sends the results back to the instance where they are stored in the appropriate CMDB and application tables.

    To activate FBD, navigate to the Discovery Configuration Console (All > Discovery Definition > Configuration Console) and in the File Based Discovery section, activate the Enable File Based Discovery toggle switch.
    Figure 1. Discovery Configuration Console
    Discovery Configuration Console

    For details on the FBD configuration and system properties, see Agent Client Collector File-Based Discovery properties.

    Supported platforms

    FBD supports the following operating systems:

    • Windows
    • Linux
    • macOS

    Required plugins

    The following plugins are required for File-Based Discovery on Agent Client Collector:

    • File-based Discovery (com.snc.discovery.file_based_discovery)
    • Software Asset Management - File Signature Normalization (com.snc.file_signature_normalization) — Activated automatically once the File-based Discovery plugin is active
    • Agent Client Collector - Visibility Content (sn_acc_vis_content)
    • Software Asset Management Professional (com.snc.samp)

    Delta scanning

    Delta scanning is a performance optimization that applies only to the File Management policy. It reduces the volume of data sent from the endpoint to the instance on repeat scans.

    The delta scanning process works as follows:

    1. First scan — A full scan runs. All matching files are sent to the instance. A fingerprint, which is a snapshot of all discovered file paths and sizes, is saved locally on the endpoint.
    2. Subsequent scans — The scanner compares the current file list against the saved fingerprint and reports only the differences:
      • Added — files that exist now but were not in the previous fingerprint
      • Modified — files that exist in both but with a different size
      • Deleted — files that were in the previous fingerprint but no longer exist on disk
    3. Periodic full scan — After a configured number of delta scans (default: 5), a full scan is automatically forced to verify accuracy and correct any drift.
    Note:
    Delta scanning does not apply to the SAM or SWID policies. These policies always perform a full scan on each run.

    Archive file scanning

    Archive file scanning extends file-based discovery to inspect ZIP and JAR archive files and report the files contained within them. This enables discovery of software artifacts such as executables and libraries that are packaged in the ZIP or JAR files on the endpoint.

    Archive file scanning is disabled by default. To enable it, set the sn_acc_vis_content.file_discovery.archive_scan_enabled property to true. This property requires the discovery_admin role to modify.

    When archive file scanning is enabled, the agent inspects each ZIP or JAR file encountered during a directory scan. The agent reads the archive's internal index to enumerate the files inside. No file content is extracted or decompressed. Only metadata is collected.

    For each file found inside an archive, the agent applies the same filtering rules used for regular files on disk, including SAM allowlist and File Management extension rules. Files that pass the filters are reported alongside other discovered files.

    For filtering rules and performance safeguards, see Archive file scanning filtering rules and limits.