HIB - Lumension Endpoint Security

Hi!

Does anyone use Lumension Endpoint Security 4.6

My boss wants me to test it out on whether I can control specific users to specific computers.
LVL 1
Anonymous KHIT EngineerAsked:
Who is Participating?
 
gheistCommented:
Anything login restrictions in AD and GPOs dont cover?
0
 
btanExec ConsultantCommented:
IN fact GPO shd be suffice, and for LEMSS it also can integrate with at GPMC
Core Platform

Group Membership Dialog
Add endpoints to your groups using this redesigned dialog, which includes search features and filters for finding ungrouped endpoints. You can also import endpoints using a comma-delineated list. Use this dialog by opening the Groups page, selecting the Endpoint Membership view, and then clicking the Membership button.
https://www.lumension.com/kb/1690.aspx
Porbably use GPO instead to suite your use case, the LEMSS lockdown does not seems to restrict login esp for those without their agents. They can do discovery and push agent via GPMC setting .. (https://www.lumension.com/kb/Home/L-E-M-S-S-/1662.aspx)

Regardless leveraging GPO (if for Windows only), GPMC can create a new policy for the Users that will be for Restricted Logons to specific machines. Just need to ensure that all users you want to deny access have membership in a particular security group which you will filter in the GPO applied to the computers whose access you want to restrict. Understand there is setting such as "Computer Configuration\Windows Settings\Security Settings\Account Policies\Kerberos Policy"
https://technet.microsoft.com/en-us/library/cc976313.aspx

in addition, also check out "Access this computer from the network"
Determine which users and groups are allowed to connect to the computer over the network. This user right is defined in the Default Domain Controller Group Policy object (GPO) and in the local security policy of workstations and servers. The default groups that have this right on each platform are:

Workstations and Servers
Administrators
Backup Operators
Power Users
Users
Everyone

Domain Controllers
Administrators
Authenticated Users
Everyone
https://technet.microsoft.com/en-us/library/cc976431.aspx
0
 
Anonymous KHIT EngineerAuthor Commented:
Was not the answer I am looking for but thanks.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.