RE: secure remote management of nt4 and w2k servers

Date: 08/02/02

Date: Thu, 1 Aug 2002 16:51:24 -0600 

SANS has a doc that shows how to lock PCA down if you decide to go that
route: (you need to create an
account now, but it's free)

I use PCA 9.2 to manage an webserver that's still on NT4. The box is behind
a well configured PIX doing both source and port filtering.


-----Original Message-----
From: Collins, Michael D.(IT Security & Comms)
Sent: Thursday, August 01, 2002 9:59 AM
To: ''
Subject: FW: secure remote management of nt4 and w2k servers


I have a project to look at remote management software for remotely
controlling a mixture of nt4 and w2k servers.

I have looked at VNC, PC Anywhere 10.5, Net support manager, Intel LANDesk,
Dameware, RAdmin and Net ops.

Should I just stick to terminal services on the 2000 boxes?


1. good auditing (who is using tool, where they are connecting to, what
they are doing and how long session lasts );

2. speed across LAN, 56k and ISDN dial up; and

3. IP Address filtering (need to be able to restrict users to
particular IP addresses).


Has anyone else carried out a similar review or seen a similar published
review. If so, I would appreciate if u could point me in the direction.

What would be the preferred solution of the NTSecurity community? All
advices appreciated.



IT Security, Athlone, Ireland.

This communication and any files transmitted with it may
contain information that is confidential and may be privileged and exempt
from disclosure under applicable law. It is intended solely for
the use of the individual or the entity to which it is addressed
If you are not the intended recipient, you are hereby notified
that any use, dissemination, or copying of this communication
is strictly prohibited. If you have received this communication
in error, please notify the sender.

Thank you for your co-operation