You can disable arcache/arreload in the server configuration so that the commands can not be used. If someone has access to the server with administrative priveleges you can not stop this. They can update the ar.conf and restart the server and add a user if they have admin privs.
Axton Grams On Tue, Nov 15, 2011 at 3:56 PM, Jonas Stumph Stevnsvig < arsl...@stevnsvig.com> wrote: > ** > Now I'm curious - how can you harden the server to prevent this workaround? > > Den 15-11-2011 22:47, Kemes, Lisa skrev: > > ** > Thanks so much!! I used this and it worked! <whew!> > > Lisa > > > ------------------------------ > *From:* Action Request System discussion list(ARSList) [ > mailto:arslist@ARSLIST.ORG <arslist@ARSLIST.ORG>] *On Behalf Of *Nathan > Aker > *Sent:* Tuesday, November 15, 2011 4:38 PM > *To:* arslist@ARSLIST.ORG > *Subject:* Re: Demo <sigh> > > ** > > Haven’t tried this procedure in a while, but it should create a new Admin > account. The last parameter sets it up a as an Admin. Nate.**** > > ** ** > > ** ** > > ** ** > > Go to a command line, and CD to the install directory. Look for a binary > called arcache**** > > ** ** > > When you get to it, type the following:**** > > ** ** > > arcache -Ua -eTEMP999 -lw 1 -n "TEMPADMIN"-p"" -s <servername> -g "1;"**** > > ** ** > > **** > > ** ** > > Then, log into the server with a login of TEMPADMIN, no password**** > > ** ** > > *Nathan Aker* > ITSM Solution Architect**** > > *McAfee, Inc.* > > **** > > ** ** > > *From:* Action Request System discussion list(ARSList) [ > mailto:arslist@ARSLIST.ORG <arslist@ARSLIST.ORG>] *On Behalf Of *Kemes, > Lisa > *Sent:* Tuesday, November 15, 2011 2:43 PM > *To:* arslist@ARSLIST.ORG > *Subject:* Demo <sigh>**** > > ** ** > > ** **** > > I hope others have done the same thing.**** > > **** > > Installed AR System Application Software 7.6.04 SP2 on Windows 2008 server > (we are using Oracle 11gR2).**** > > **** > > After install, I logged on using Demo, then went to the User Form and > added my account and then changed the Demo Account from Fixed to Read (so I > could add 2 other users).**** > > **** > > Logged out and logged in as myself and DOH! I didn't add administrator > permissions on my account so I don't have admin privileges.**** > > **** > > Logged out and then back in as Demo and I guess when I changed the license > from fixed to Read it took out the Admin Privilege?**** > > **** > > I have some info from the ARSlist archives to use arcache to add a fixed > license back to demo, but will it give it the admin priv's back?**** > > **** > > **** > > *Lisa Kemes***** > > AR System Developer > TEIS - USA**** > > +1 717 810 2408 tel > +1 717 602 9460 mobile > *lisa.ke...@te.com* > 100 Amp Drive**** > > Harrisburg, PA 17112 > > [image: Description: Image removed by sender.] <http://www.te.com/> > > www.te.com > > [image: Description: Image removed by > sender.]<http://twitter.com/teconnectivity>[image: > Description: Image removed by > sender.]<http://www.facebook.com/teconnectivity>[image: > Description: Image removed by > sender.]<http://www.flickr.com/photos/teconnectivity/>[image: > Description: Image removed by > sender.]<http://www.linkedin.com/groups?gid=1591657>[image: > Description: Image removed by sender.]<http://www.youtube.com/teconnectivity> > **** > > **** > > _attend WWRUG12 www.wwrug.com ARSlist: "Where the Answers Are"_ **** > _attend WWRUG12 www.wwrug.com ARSlist: "Where the Answers Are"_ _attend > WWRUG12 www.wwrug.com ARSlist: "Where the Answers Are"_ > > > _attend WWRUG12 www.wwrug.com ARSlist: "Where the Answers Are"_ > _______________________________________________________________________________ UNSUBSCRIBE or access ARSlist Archives at www.arslist.org attend wwrug12 www.wwrug12.com ARSList: "Where the Answers Are"
