Hello,
I am using Veeam B & R 9.5 Update 4. As per veeam documentation, In order to manage physical agents from the B&R console, we are required to set up "Protection Groups" and then configure here a user account which has administrative privileges on the clients/endpoints to do a discovery scan. The documentation just says "administrator" level permissions. My question is, Is there a way to restrict this admin account ? How do customers do it in large environments? Creating a domain admin account is a big loophole. How do you guys harden this user account ?
-
neeraj79
- Lurker
- Posts: 1
- Liked: never
- Joined: Jun 20, 2017 7:39 pm
- Contact:
-
HannesK
- Product Manager
- Posts: 14836
- Liked: 3083 times
- Joined: Sep 01, 2014 11:46 am
- Full Name: Hannes Kasparick
- Location: Austria
- Contact:
Re: Admin account concerns
Hello,
and welcome to the forums.
Usually customers have a normal domain user that is local admin. No domain admin.
One of the reasons why it requires an administrative account is that otherwise somebody could install a rogue backup server. He scans the network, adds all the agents and does backups to steal the data.
So the answer is, that there is no way to work with without administrator permissions.
Best regards,
Hannes
and welcome to the forums.
Usually customers have a normal domain user that is local admin. No domain admin.
One of the reasons why it requires an administrative account is that otherwise somebody could install a rogue backup server. He scans the network, adds all the agents and does backups to steal the data.
So the answer is, that there is no way to work with without administrator permissions.
Best regards,
Hannes
Who is online
Users browsing this forum: No registered users and 17 guests