Manualshelf

Users Guide

ManualsBrandsDell ManualsActive System ManagerOpenManage IT Assistant Version 7.2 (Dell OpenManage 4.5.1)
81828384858687888990
88 Ensuring a Secure Dell OpenManage IT Assistant Installation
Figure 6-2. Using Terminal Services for Additional Security
In Figure 6-2, a user may connect to the IT Assistant management station through a locally installed
Terminal Services client or Windows XP Remote Desktop connection. This connection requires a valid
domain/user ID/password. See Microsoft’s website for more information.
The additional level of security is derived by setting up restrictions on all managed systems to only accept
SNMP traffic from the IP address of the system running the IT Assistant User Interface ([UI] the network
management station). Terminal Services and Remote Desktop sessions emulate traffic coming directly
from the network management station; therefore, access to IT Assistant is restricted only to Terminal
Services clients or a local network management station user. Any other connection, such as another remote
IT Assistant UI installation, would be unable to effectively communicate with properly configured
managed systems in the network since traffic identified as originating from a system other than the
network management station would be refused.
NOTE: Terminal Services is an optional component of Microsoft Windows 2000 and Microsoft Windows Server
2003 that can be installed in either admin or application mode.
NOTE: When Terminal Services is installed in administrative mode, up to two users can log in as long as they are
members of the administrators group. When Terminal Services is installed in application mode, non-administrator
groups can log in and more than two sessions are supported. However, application mode installation has additional
licensing implications. When installing IT Assistant on a system running Terminal Services in application mode, the
installation must be performed locally and not through a terminal session.
user’s system
Services system
IT Assistant
Services
IT Assistant
User Interface
Server
Administrator
Internet Explorer
Array Manager
2148
RAC
Array Manager
managed
system
161,162
CIM/WMI
firewall
2607
1311
terminal services
80/443
Terminal
Services
client
3389