The DualShield logon client for Windows and Mac are designed to be installed and running without the need of configuration by the user. Therefore, the logon clients need a way to automaticaly discover the logon agents.
By design, there are several ways a logon client can use to discover a logon agent. Below are two commonly used methods:
Network Broadcasting
DualShield computer logon clients will send out a broadcast message looking for an agent in the network. If there is a DualShield computer agent within the network, the agent will receive the message and send back a response to the client.
This method only works if bothe the agent and clients are installed on the machines in the same VLAN in the network. Therefore, it might not be reliable.
DNS Lookup
The most reliable way of agent discovery is by DNS lookup. The logon client will look up a hostname called “dswagent” or "dswsslagent" in your DNS server. For instance, if the domain name of your organisation is “acme.org” then it will look for “dswagent.acme.org” or "dswsslagent.acme.org"
Therefore, you need to add these two hostnames in your DNS server.
If you have multiple logon agents installed, then you must add multiple entries of these two hostnames in your DNS server.