- Community Home
- >
- Servers and Operating Systems
- >
- HPE BladeSystem
- >
- BladeSystem - General
- >
- OA/VCM security/authorization options
BladeSystem - General
1748284
Members
3448
Online
108761
Solutions
Forums
Categories
Company
Local Language
back
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Discussions
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Go to solution
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-13-2010 07:42 AM
07-13-2010 07:42 AM
Hi,
For OA/VCM access control, what are you using?
For access control I mean preventing admins logging in with shared "administrator" user account. Instead people use their own accounts to login to OA/VCM.
Those of you enabled AD integration, are you happy with it?
Is there a way to disable remote admin level access, and force users to login as themselves and then switch user to perform admin tasks?
Thanks.
For OA/VCM access control, what are you using?
For access control I mean preventing admins logging in with shared "administrator" user account. Instead people use their own accounts to login to OA/VCM.
Those of you enabled AD integration, are you happy with it?
Is there a way to disable remote admin level access, and force users to login as themselves and then switch user to perform admin tasks?
Thanks.
Solved! Go to Solution.
1 REPLY 1
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-13-2010 08:22 AM
07-13-2010 08:22 AM
Solution
hi pakm,
AD integration works well for us. One caveat is that VCM (and older fw revs of OA) do not allow sub-OU searches. Therefore we implemented a solution where all OA/VCM accounts are in a single OU, and groups are constructed based on needed permissions.
Be cautious when you disable local accounts. If your LDAP settings change without notice you can end up not being able to log in at all.
There is no secondary login method available. However you can modularly assign rights depending on what specific users need.
Auditing can enhance your security solution. Have OA/VCM write to a syslog server and monitor this for changes and logins.
good luck, if you appreciate the answers we appreciate the points!
AD integration works well for us. One caveat is that VCM (and older fw revs of OA) do not allow sub-OU searches. Therefore we implemented a solution where all OA/VCM accounts are in a single OU, and groups are constructed based on needed permissions.
Be cautious when you disable local accounts. If your LDAP settings change without notice you can end up not being able to log in at all.
There is no secondary login method available. However you can modularly assign rights depending on what specific users need.
Auditing can enhance your security solution. Have OA/VCM write to a syslog server and monitor this for changes and logins.
good luck, if you appreciate the answers we appreciate the points!
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
News and Events
Support
© Copyright 2024 Hewlett Packard Enterprise Development LP