dshonwood wrote:
Couple of things concern me. I was able to access the interface without logging in. So anyone on my domain can get into this console?? If that is true, that means anyone can open the web console and reboot servers and workstations at will? Is there a way to prevent this?
I don't know your enviroment, but just because they can click on the button does not mean they can reboot the remote computer. All that button is doing is executing SHUTDOWN command. If they have rights today to type SHUTDOWN -r -m \\computername from a COMMAND prompt, LanSweeper is not giving them any more access.
For over a year we had LanSweeper open to everyone in the company, but just reciently deceided to lock it down. There was no abuse, as there is nothing that I would consider confidential information in it, we just deceided to lock it down.
Only issue we have had with locking it down is now techs can't get to it via their BlackBerrys.