• State Verified Answer
  • Locked Locked
  • Replies 4 replies
  • Subscribers 24 subscribers
  • Views 336 views
  • Users 0 members are here
Options
Related
This discussion has been locked. The information referenced herein may be inaccurate due to age, software updates, or external references.
You can no longer post new replies to this discussion. If you have a similar question you can start a new discussion in this forum.

Unauthorized admin access

ssb1979

I have two technicians who are somehow granting themselves and one other technician admin access to our webhelpdesk. I have repeatedly removed their access, changed my administrator password, even renamed my admin account but they managed to grant themselves access again this week.  My supervisor and I are the only two who should have access to the admin account and neither of us are changing the permissions.  While we deal with the personnel issue, can someone help me understand if there is another way they are obtaining the admin password? We are running version 12.5 and host it in house on a VM windows server. The two techs do have admin access to the server so I suspect they are somehow modifying the database. I've tried looking for security logs and didn't find any.

Any help would be great.  I'm pretty new to WHD and am still getting up to speed.

  • 0

    if they are modifying the database and editing the Tech table, they could grant themselves access that way.    You could likely change the password on the database.

  • 0

    You need to create a "Tech Permissions" group for your technicians and add them only to this group under the web help desk settings. Then under "Other Permissions" un-check the "View Techs & Groups" permission. You'll want to carefully review the other permissions too. It sounds like to me they are able to see the Techs and Groups and are just going in and simply changing themselves from "Tech" to "Admin".

    As for the database & servers, you should secure that too.

  • 0

    I agree with Richardf456, DEFINATELY secure the databases and setting groups for permissions is much easier to manage moving forward.

  • 0

    Thanks for the help everyone, I double checked my group permissions and was also able to change the database password as well.  Unfortunately changing the server password isn't an option (long story) but at least I've got WHD access tightened up. emoticons_happy.png

SolarWinds solutions are rooted in our deep connection to our user base in the THWACK® online community. More than 195,000 members are here to solve problems, share technology and best practices, and directly contribute to our product development process.

SolarWinds Customer Success Center Certification Media Vault Link Accounts
About THWACK Blogs For Government Edit Settings Free Tools & Trials
Legal Documents Terms of Use Privacy California Privacy Rights Security Information
©2024 SolarWinds Worldwide, LLC. All Rights Reserved.