Hi All
Our Solarwinds system monitors an environment that gets audited and we need to restrict Admin access to the webconsole.
Does anybody know of a way to only allow admin access to the webconsole if user is logged into a specific host ??
Thanks
Let me see if I've got this straight: You only want the local SolarWinds Platform "admin" account to have access from a single computer?
Scenario:
SWBAD-LAB.domain.local
https://sw-web.domain.local/
SWOK-LAB.domain.local
Is that correct?
Thanks for reply
You are correct, the exact scenario we are looking for
it doesnt have to be the local admin account, we do have a domain admin account, whichever way is possible or simpler
To be fair - neither way is simpler. I was just trying to understand the ask. If you want to whole-heartedly prevent it, you'd need some type of Web Application Firewall (or something similar) between everyone and the SolarWinds Server. That's wholly outside the scope of the SolarWinds Product.
You could setup an alert based around the audit log to let you know when someone logs in with an admin-level account from any computer except the designated computer.
I, personally, would never use a domain admin account to log into anything except the domain controllers - and only then when there isn't an alternate account available.
