Security Basics mailing list archives
RE: Alert when a new PC joins the domain
From: Ken Schaefer <Ken () adOpenStatic com>
Date: Tue, 9 Aug 2011 03:23:09 +0000
In addition to alerting you may wish to consider: a) redirecting the container that new computers get added to, to a dedicated OU b) configure a GPO for that OU that either runs a Machine startup script or uses Software installation GPO to push down your agent That way you, hopefully, will also get your agent autoinstalled onto machines joining the domain. For machines where you don't want the agent installed automatically (e.g. maybe some servers) you'd need to look at pre-creating the computer object in the destination OU, or moving the object prior to rebooting, or a WMI filter or something. Cheers Ken -----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of fl0w3r Sent: Tuesday, 2 August 2011 6:19 AM To: security-basics () securityfocus com Subject: Re: Alert when a new PC joins the domain Thanks to everybody for your answers, we use Kaseya to manage workstations, Kaseya depends of installing an agent in each workstation/server. That's how we manage our inventory. The scenario is this: A tech can join a computer to the domain without no problem, they have permissions to do so. The problem is : sometimes the PC added doesn't have this Kaseya agent , so it is completely out of my control (inventory speaking) unless I do the manual cross checking which is very time consuming. That's why I need to implement an alert to notify me every time a PC has been joined to the domain, If I found that PC within my Kaseya inventory fine if not at least I can determine to what client this PC belongs, and what tech was working on that PC. I am talking approx. 20 domains here. Maybe this is not the right approach to the problem... I will be glad to hear other points of view. On 8/1/2011 2:52 PM, Jeffrey Walton wrote:
On Mon, Aug 1, 2011 at 5:40 PM, Ansgar Wiechers <bugtraq () planetcobalt net> wrote:On 2011-08-01 Dana Kukkonen wrote:I believe, by default, members of the domain's Authenticated Users group can add 10 computers to the domain ever since Win2K. Domain Admins aren't limited in the number they can add.Don't believe. Know. http://technet.microsoft.com/en-us/library/cc770919.aspxThanks for posting that Ansgar. In addition to administrators, support folks can be delegated the "join computer to domain" right (or is it a privilege...). It depends on the organization, but its common in the enterprise. Jeff ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------ ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
Current thread:
- Re: Alert when a new PC joins the domain, (continued)
- Re: Alert when a new PC joins the domain Archangel Amael (Aug 01)
- RE: Alert when a new PC joins the domain Kimalat, Kipngetich (Aug 01)
- Re: Alert when a new PC joins the domain Sorin DANULESCU (Aug 01)
- Re: Alert when a new PC joins the domain Dana Kukkonen (Aug 01)
- Re: Alert when a new PC joins the domain Ansgar Wiechers (Aug 01)
- Re: Alert when a new PC joins the domain Jeffrey Walton (Aug 01)
- Re: Alert when a new PC joins the domain Chadwick Banning (Aug 01)
- Re: Alert when a new PC joins the domain fl0w3r (Aug 01)
- RE: Alert when a new PC joins the domain Carter, Allen (ARC-I)[PEROT SYSTEMS] (Aug 02)
- RE: Alert when a new PC joins the domain Kimalat, Kipngetich (Aug 03)
- RE: Alert when a new PC joins the domain Ken Schaefer (Aug 09)
- RE: Alert when a new PC joins the domain Kimalat, Kipngetich (Aug 01)
- Re: Alert when a new PC joins the domain Archangel Amael (Aug 01)
- Re: Alert when a new PC joins the domain Matthew Harlum (Aug 02)
- Re: Alert when a new PC joins the domain Security (Aug 03)
- Re: Alert when a new PC joins the domain Ansgar Wiechers (Aug 02)