Solved: Re: Script to email if users "other than" login

tsinfra · ‎01-21-2010

Hey folks,

I'm looking for an "alarm" script which will email if users other than those in a "authorised_users.txt" file log onto the VC 3 and/or esx 3 hosts. Allowed users can be created via VC permissions, however this would notify us if similiar role though unauthorised attempt to login.

Any thoughts?

Thanks in advance,

Shane.

AllanChristians · ‎02-03-2010

Easy peasy

Remove the domain admins from local admin of the VC server. Remember to add the VC admins to the local admin grp.

Then you know they are not there. = no need to worry.

/Allan

http://doitsmarter.blogspot.com/

/Allan http://doitsmarter.blogspot.com

View solution in original post

LucD · ‎01-22-2010

Yes, could you perhaps elaborate what you are trying to accomplish here ?

Do these accounts all have the required role(s) to logon to the servers but in fact they shouldn't (due to policy) ?

Or do you want to get an email when someone tries (but doesn't succeed) to logon to these servers ?

____________

Blog: LucD notes

Twitter: lucd22

Blog: lucd.info Twitter: @LucD22 Co-author PowerCLI Reference

tsinfra · ‎02-03-2010

Hey all,

soz for not replying sooner!

We have a number of users who are domain admins. Not all of these should be logging into the ESX environment however. We could create a group and put the authorised users in there, however as a domain admin it's pretty easy to figure out which group you need to be in to log onto the VC, etc etc.

Therefore I'm thinking that if I could somehow pass the users who currently have a session open via a list of authorised users, any who are not present in this list would tigger an alert and send an email.

It's pretty backward admittadly, but in my mind the easiest way to keep an eye on who's logging onto the VC.

Thanks all!