- Ensure a login method for the console from an independent user/password in case you have to change the backend authentication server. Most systems tend to get this right or they are coupled with AD.
- Don't assume credentials that need to be used will work the same in all places. In my environment, different active directories or even servers will have a different user/password required for connecting for vulnerability scanners.
- Allow administrators to pick an authentication source for administrative accounts. Many times, in order to meet #1, users login with only "local" credentials. That kills automated password management done by external systems.
Saturday, December 27, 2008
Credential Management Wishlist
Following up on wishlist issues associated with management consoles, credential management is one that everyone takes a different take on. Credential management is users for users logging into the management console as well as the console/system connecting to external managed resources such as workstations or servers.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment