Skip to main content

Securing the access and administration of IT services using jumping

As mentioned in the post "Best practice network design" (which you can read here), one of the tools a network administrator is required to have to securely manage servers is a jump server.  A jump server is installed in a partitioned section of the network and access is provided to this server using a policy based network path. The jump server is then the only network device that has network level access to the administrative consoles of servers. This prevents these consoles from being accessible to anyone on the internal network were only application level access is provided. Administrators gain access to the jump server using signed certificates which provides a high level of trust and authentication. The normal server challenge methods are then also applied on the server consoles.

Read about recommendations on what software to use for a jump server here.




Comments

Popular posts from this blog

LDWin: Link Discovery for Windows

LDWin supports the following methods of link discovery: CDP - Cisco Discovery Protocol LLDP - Link Layer Discovery Protocol Download LDWin from here.

Battery Room Explosion

A hydrogen explosion occurred in an Uninterruptible Power Source (UPS) battery room. The explosion blew a 400 ft2 hole in the roof, collapsed numerous walls and ceilings throughout the building, and significantly damaged a large portion of the 50,000 ft2 building. Fortunately, the computer/data center was vacant at the time and there were no injuries. Read more about the explosion over at hydrogen tools here .

STG (SNMP Traffic Grapher)

This freeware utility allows monitoring of supporting SNMPv1 and SNMPv2c devices including Cisco. Intended as fast aid for network administrators who need prompt access to current information about state of network equipment. Access STG here (original site) or alternatively here .