Hey folks,
I'm looking for an "alarm" script which will email if users other than those in a "authorised_users.txt" file log onto the VC 3 and/or esx 3 hosts. Allowed users can be created via VC permissions, however this would notify us if similiar role though unauthorised attempt to login.
Any thoughts?
Thanks in advance,
Shane.
Easy peasy
Remove the domain admins from local admin of the VC server. Remember to add the VC admins to the local admin grp.
Then you know they are not there. = no need to worry.
/Allan
http://doitsmarter.blogspot.com/
Yes, could you perhaps elaborate what you are trying to accomplish here ?
Do these accounts all have the required role(s) to logon to the servers but in fact they shouldn't (due to policy) ?
Or do you want to get an email when someone tries (but doesn't succeed) to logon to these servers ?
____________
Blog: LucD notes
Twitter: lucd22
Blog: lucd.info Twitter: @LucD22 Co-author PowerCLI Reference
Hey all,
soz for not replying sooner!
We have a number of users who are domain admins. Not all of these should be logging into the ESX environment however. We could create a group and put the authorised users in there, however as a domain admin it's pretty easy to figure out which group you need to be in to log onto the VC, etc etc.
Therefore I'm thinking that if I could somehow pass the users who currently have a session open via a list of authorised users, any who are not present in this list would tigger an alert and send an email.
It's pretty backward admittadly, but in my mind the easiest way to keep an eye on who's logging onto the VC.
Thanks all!
Shane.
Easy peasy
Remove the domain admins from local admin of the VC server. Remember to add the VC admins to the local admin grp.
Then you know they are not there. = no need to worry.
/Allan
http://doitsmarter.blogspot.com/
Allan great solution, never even though of it from that perspective!
Thanks!!