Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

How best to identify applications and users that might be accessing an older application server?

Posted on 2016-11-16
2
Medium Priority
?
93 Views
1 Endorsement
Last Modified: 2016-12-01
I have an older Server 2008 R2 application server (IIS 6 and 7 are installed, I know it was a mail relay and a licensing server for our engineering program, but not sure what else) in my domain that I'm attempting to sunset and remove.  My issue is that I've been here a year and I'm still stumbling onto undocumented applications and processes in my environment, and I fear removing the server and finding out later on that there was an old app, piece of manufacturing equipment, MFP, etc. that depended on something that was running on the server.

What's my best option for determining who or what might be connecting to this box, and for what purpose?

My first thought is wireshark, but I'm not too experienced with the app, so I don't know if this is my 'best' option or not.  I could also just shut the thing down and wait for an outcry, but I really hate the impression that type of move will give to my users (if it turns out that this is hosting some critical process).

Any advice would be greatly appreciated!

Scott
1
Comment
Question by:Scott Milner
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 8

Accepted Solution

by:
Senior IT System Engineer earned 2000 total points
ID: 41890588
Scott,

Does the application access the licensing web apps through IIS ?
if it is yes, then you can enable IIS logging and get the IP address from the IIS logs.
0
 

Author Closing Comment

by:Scott Milner
ID: 41909301
Brilliant!

thanks for the response, and sorry for my delayed response back.  Looking through the IIS logs I was able to identify two remaining devices in my domain that were still configured to access the box.

I appreciate the help!

Scott
1

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A safe way to clean winsxs folder from your windows server 2008 R2 editions
This article explains how to install and use the NTBackup utility that comes with Windows Server.
This tutorial will walk an individual through the steps necessary to configure their installation of BackupExec 2012 to use network shared disk space. Verify that the path to the shared storage is valid and that data can be written to that location:…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…

610 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question