Security Basics mailing list archives
RE: Alert when a new PC joins the domain
From: "Carter, Allen \(ARC-I\)\[PEROT SYSTEMS\]" <allen.carter () nasa gov>
Date: Tue, 2 Aug 2011 13:27:52 -0500
It may not be practical on a 20 domain network but group policy that applies your agent to any new system would be ideal. If you get notice of a non compliant machine, you still have to get the package onto it somehow. Save a step. Allen -----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of fl0w3r Sent: Monday, August 01, 2011 3:19 PM To: security-basics () securityfocus com Subject: Re: Alert when a new PC joins the domain Thanks to everybody for your answers, we use Kaseya to manage workstations, Kaseya depends of installing an agent in each workstation/server. That's how we manage our inventory. The scenario is this: A tech can join a computer to the domain without no problem, they have permissions to do so. The problem is : sometimes the PC added doesn't have this Kaseya agent , so it is completely out of my control (inventory speaking) unless I do the manual cross checking which is very time consuming. That's why I need to implement an alert to notify me every time a PC has been joined to the domain, If I found that PC within my Kaseya inventory fine if not at least I can determine to what client this PC belongs, and what tech was working on that PC. I am talking approx. 20 domains here. Maybe this is not the right approach to the problem... I will be glad to hear other points of view. On 8/1/2011 2:52 PM, Jeffrey Walton wrote:
On Mon, Aug 1, 2011 at 5:40 PM, Ansgar Wiechers <bugtraq () planetcobalt net> wrote:On 2011-08-01 Dana Kukkonen wrote:I believe, by default, members of the domain's Authenticated Users group can add 10 computers to the domain ever since Win2K. Domain Admins aren't limited in the number they can add.Don't believe. Know. http://technet.microsoft.com/en-us/library/cc770919.aspxThanks for posting that Ansgar. In addition to administrators, support folks can be delegated the "join computer to domain" right (or is it a privilege...). It depends on the organization, but its common in the enterprise. Jeff ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------ ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
Current thread:
- Alert when a new PC joins the domain fl0w3r (Aug 01)
- Re: Alert when a new PC joins the domain Josh (Aug 01)
- Re: Alert when a new PC joins the domain Archangel Amael (Aug 01)
- RE: Alert when a new PC joins the domain Kimalat, Kipngetich (Aug 01)
- Re: Alert when a new PC joins the domain Sorin DANULESCU (Aug 01)
- Re: Alert when a new PC joins the domain Dana Kukkonen (Aug 01)
- Re: Alert when a new PC joins the domain Ansgar Wiechers (Aug 01)
- Re: Alert when a new PC joins the domain Jeffrey Walton (Aug 01)
- Re: Alert when a new PC joins the domain Chadwick Banning (Aug 01)
- Re: Alert when a new PC joins the domain fl0w3r (Aug 01)
- RE: Alert when a new PC joins the domain Carter, Allen (ARC-I)[PEROT SYSTEMS] (Aug 02)
- RE: Alert when a new PC joins the domain Kimalat, Kipngetich (Aug 03)
- RE: Alert when a new PC joins the domain Ken Schaefer (Aug 09)
- RE: Alert when a new PC joins the domain Kimalat, Kipngetich (Aug 01)
- Re: Alert when a new PC joins the domain Matthew Harlum (Aug 02)
- Re: Alert when a new PC joins the domain Security (Aug 03)
- <Possible follow-ups>
- Re: Alert when a new PC joins the domain andrewhaynes (Aug 01)
- Re: Re: Alert when a new PC joins the domain glen (Aug 02)
- Re: Alert when a new PC joins the domain Ansgar Wiechers (Aug 02)