I have created a local user account on our PF 6.0.1 server for our
'Accommodation' team to sponsor and
manipulate and control guest accounts/nodes. I do not want them to have any
other access.
The problem is a local user with the 'User manager' action enabled is able to
'accidentally' delete ANY
account (event the 'admin' and 'default' accounts).
The 'user' can also change the ADMIN account password and use this to obtain
ADMIN rights to the server.
This is a serious security issues with the system. Is there a way of locking
down the 'user' account to prevent this,
Or even a way of making the 'admin' account 'read-only'.
Andrew
------------------------------------------------------------------------------
Mobile security can be enabling, not merely restricting. Employees who
bring their own devices (BYOD) to work are irked by the imposition of MDM
restrictions. Mobile Device Manager Plus allows you to control only the
apps on BYO-devices by containerizing them, leaving personal data untouched!
https://ad.doubleclick.net/ddm/clk/304595813;131938128;j
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
