The monitoring software I use can send messages via SMTP, so one of the checks is to watch event logs for specific UserID's and then send it to my call phone's e-mail address.
I also finally got smart and stopped using my clients local e-mail server as the SMTP relay too, kind of hard to get "e-mail server down" messages when you are relying on the monitored e-mail server to send a message out :-) -----Original Message----- From: HELP_PC [mailto:g...@enter.it] Sent: Friday, October 28, 2011 6:46 AM To: NT System Admin Issues Subject: R: About network admin password Where from did you setup a send text to the phone? Guido Elia HELPPC -----Messaggio originale----- Da: David Lum [mailto:david....@nwea.org] Inviato: venerdì 28 ottobre 2011 15.28 A: NT System Admin Issues Oggetto: RE: About network admin password At %nightjob% a couple users at clients have DA accounts so they can occasionally install software on their SBS servers (usually with vendors onsite and I am unavailable), and I have event log monitoring set up to send a text to my phone whenever that account us used. It's a compromise we live with that beats alternatives. -----Original Message----- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Thursday, October 27, 2011 7:05 AM To: NT System Admin Issues Subject: Re: About network admin password On Thu, Oct 27, 2011 at 9:57 AM, HELP_PC <g...@enter.it> wrote: > How can I may be sure that another people don't try to get access as > admin if they know the password.Track every logon ? Track every log on, and immediately log the details to a system they don't have access to. (If you only log locally, they can modify the log records.) Possibly less intensive is to not simply give them the password. Instead, give them a record of the password under opaque seal. Periodically audit the seal to make sure it hasn't been broken. If they need some access normally: Create a separate account, with separate credentials. Grant that account the least privilege they need to do their job. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
