Hi, I have few questions. Thank you.
1. Is it possible to define a role based approach for the OPSI users? Ex. I want a group who can package only and other group can deploy only?
2. Does the log in the configed shows the installation of package? If not, where is it stored?
3. Is the password in the Database encrypted?
4. How session is being managed in OPSI?
OPSI Security
-
n.wenselowski
- Ex-uib-Team
- Beiträge: 3194
- Registriert: 04 Apr 2013, 12:15
Re: OPSI Security
Hello rmtevesjr,
re 1: It is possible. One way you could achieve this is to use the OS groups opsiadmin (for administrative tasks) and pcpatch (for packaging). This can be done on one machine.
Another way is to setup two different machines - one for packaging (and probably testing) and another one for the deployment. At the end of the packaging process you get a .opsi file that can be installed somewhere else (in production).
re 2: The configed has a tab logfiles and there you will find the instlog.
re 3: Yes.
re 4: Do you mean the sessions on Windows clients or the ones used for communicating with the opsi server?
With kind regards
Niko
re 1: It is possible. One way you could achieve this is to use the OS groups opsiadmin (for administrative tasks) and pcpatch (for packaging). This can be done on one machine.
Another way is to setup two different machines - one for packaging (and probably testing) and another one for the deployment. At the end of the packaging process you get a .opsi file that can be installed somewhere else (in production).
re 2: The configed has a tab logfiles and there you will find the instlog.
re 3: Yes.
re 4: Do you mean the sessions on Windows clients or the ones used for communicating with the opsi server?
With kind regards
Niko
Code: Alles auswählen
import OPSIRe: OPSI Security
Hi Niko,
Thank you for the prompt reply.
What I mean in #4 is the session from Web Console (OPSI Configed). Thanks again.
Thank you for the prompt reply.
What I mean in #4 is the session from Web Console (OPSI Configed). Thanks again.
-
n.wenselowski
- Ex-uib-Team
- Beiträge: 3194
- Registriert: 04 Apr 2013, 12:15
Re: OPSI Security
Hello rmtevesjr,
OPSI does not manage the Windows session information. But you have the possibility to request the information from a PC running with OPSI to see if i.e. someone is logged an.
Requesting session information is an explicit task.
If you want to have this information very up-to-date you could write a small script that requests this information from your clients and then run this script via crontab in defined intervals from your linux server.
Kind regards
Niko
OPSI does not manage the Windows session information. But you have the possibility to request the information from a PC running with OPSI to see if i.e. someone is logged an.
Requesting session information is an explicit task.
If you want to have this information very up-to-date you could write a small script that requests this information from your clients and then run this script via crontab in defined intervals from your linux server.
Kind regards
Niko
Code: Alles auswählen
import OPSI