This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Community FAQ
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Lansweeper security

trevora
Engaged Sweeper II

‎09-06-2010 08:22 PM


Just bought and installed Lansweeper and playing around with it and would like to clarify the security aspects of it.

We have 3 domain admins and an apprentice and would like all 4 to have access to the system, but would like to prevent the apprentice from accessing certain features (i.e. shutdown\reboot computers, amend user password settings etc). Please could you advise if it is possible to lock down certain features or is it a case of once you get to the webpage you're in?

More concerning is the fact that the default install onto IIS leaves the webpage accessible to anyone. I've edited our web.config to lock it down, but this is mentioned in a KB article rather than in any installation instructions, which i would have thought is a fairly important point. Surely if left to its default install then anyone could access the system and, once it had done a scan, start shutting down whatever they feel like (including servers).

Or have i missed something fundamental?

Labels:
0 Kudos
2 REPLIES 2
trevora
Engaged Sweeper II

‎09-07-2010 11:45 AM

Excellent I have missed something then!

Thanks for the prompt response.
0 Kudos
Hemoco
Lansweeper Alumni

‎09-06-2010 08:27 PM

All actions run in the context of the user logged on (the user starting the webconsole)
Non-administrators can't run the actions that need administrative privileges.
0 Kudos

Archive

This board contains archived posts from the retired Lansweeper Forum and Insiders Community.

New to Lansweeper?

Try Lansweeper For Free

Experience Lansweeper with your own data.
Sign up now for a 14-day free trial.

Try Now
Top