General discussion

Locked

SMS 2.0 - Security

By mmyers ·
We are thinking about implementing SMS 2.0 in our organization which has internet access from the desktop. Will the SMS client agent open us up to potential malicious use (remote control, etc.)when workstations are accessing the internet?

This conversation is currently closed to new comments.

4 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

SMS 2.0 - Security

by DC Baker In reply to SMS 2.0 - Security

In order for someone to remote control a computer on your network there are several things required.

1. An NT Workstation in the SMS Site Server Domain (or trusted domain) with a Domain Account. The workstation must have the SMS Admin console Software installed.

2. The Domain account must be a member of the SMS Admins local group on the SMS Site Server.

3. If the client workstations are NT then the Remote Control User must also have membership in a group that has been given permission to remote control NT Workstations.

If someone from the Internet can meet even one of these requirements above you have a bigger problem than them being able to remote control your clients.

Collapse -

SMS 2.0 - Security

by mmyers In reply to SMS 2.0 - Security
Collapse -

SMS 2.0 - Security

by avidetto In reply to SMS 2.0 - Security

To expand even further on this, SMS ALso has local,system & Domain Admin settings. So before someone can use the Remote to hurt your company, they would have to have a comb. of the following..remote access to the System (vpn, via a DSL/cable, or dial-up) ADMIN rights to the box to install SMS Admin, Domain /or system ADMin rights & also have rights to the SMS server as setup in the SMS install. Not only will it not open up the network, rather it can Lock down the sytsem even more. Use softwaremetering then you can assign the exact number of licences & who is allowed to have them fo rthe client. Also other apps, this will allow you to watch who has what on your network & when. THen set up a time restriction on those you only want to haveit during certin h ours. This will actually tighten loopholes in your current security..for example.. Rclient, anyone who finds out the admin password & has a copy of Rclient can hack on into your domain..(or the password of someone with admin rights). however youc a

Collapse -

SMS 2.0 - Security

by mmyers In reply to SMS 2.0 - Security
Back to Windows Forum
4 total posts (Page 1 of 1)  

Related Discussions

Related Forums