Users defined in the premited viewrs can access any client with RC.exe
Hello Everyone,
Can someone please explain me how the remote permissions work? Ive granted each user in my organization remote tools rights to the right collection, then I added everyone to the "Permited Viewers" and finally I published RC.exe. now everyone can remote control
every client in the organization... it seems like the remote tools i configured under "User Rights" has no effect.
July 6th, 2010 12:05pm
In the docs it explicate state that collection security does not prevent someone from using RC to access other PCs.
http://technet.microsoft.com/en-ca/library/bb693761.aspx
Do not rely on collection security to control remote tools access Bypassing
collection security for Remote Tools is easy for knowledgeable or determined people. They could set up a Configuration Manager 2007 site that is not part of your hierarchy and create resource records for clients they want to control. They could grant themselves
any rights they want on those resources. Also, anyone with the Use Remote Tools right can use the command line version of Windows 2000 Remote Tools with the /SMS:NOSQL option to bypass checking the database. You should think of collection
security for Remote Tools as an organizational convenience and effective for staff that follow your policies and procedures.http://www.enhansoft.com/
Free Windows Admin Tool Kit Click here and download it now
July 6th, 2010 4:51pm
Thanks,
Dan.
July 6th, 2010 5:24pm