Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [security-groups]

175 questions
1
vote
1 answer

AWS: Same VPC, but can only access one DB

I am fairly new to AWS, so I am sure that I am just missing something, but here is my problem: I have created a VPC with 3 subnets and one security group linked to all of them. The security group accepts inbound from my machine. Next I have created…
Lennart
  • 11
  • 1
1
vote
1 answer

AWS security groups as custom source

I have a security group that contains all the IP range of my company and some ports it should be able to connect to defined in its inbound rule. I understand that you can use a security group id as a custom source in another security group, which…
Phil
  • 143
  • 1
  • 8
1
vote
2 answers

Updating Group objects directly in Office 365 Portal instead of On-Premises Active Directory

Recently, I found a new job which uses O365 in a hybrid environment. Just to explain a bit, the new environment has On-premises Active Directory plus an instance of On-premises Exchange Server (which actually has no user mailboxes inside). The…
Blue Tongue
  • 147
  • 1
  • 12
1
vote
0 answers

Editing Local Windows Built in Group: Network Operator

We need our local Built-in Group Network operator to be able to modify the speed ( aka Advanced TCP-IP setting) of the Windows 10 Network adapter but as per our test/research, this privilege is not granted to this group per default. Is there a way…
Didier
  • 11
  • 1
1
vote
1 answer

How to connect to my server from AWS device farm when limiting the device farm ip range to 54.244.50.32/27?

We have a classic load balanser that's configured to allow TCP traffic on port 444. We have a security group configured that allows TCP traffic from 54.244.50.32/27. If we open up the traffic to the entire internet (0.0.0.0/0), then we can connect…
anber
  • 113
  • 4
1
vote
4 answers

Do not show all docker containers to a particular user

I want to use one server to host multiple docker-containers. I want to give another user a possibility to manage new docker-containers, but I do not want to give him access to all other containers, which I started, since they may contain sensitive…
noisy
  • 91
  • 6
1
vote
1 answer

Database Connections Persist After Security Group Change

We've set up a system to send a message to a queue in SQS when there's an outage on a dependency. In order to simulate an outage and test the system, I blocked the outbound port to a database on the security group, but found that the ec2 instance…
Hazel T
  • 113
  • 4
1
vote
0 answers

Incorrectly-Made Security Group

I was recently trying to research into nested groups, and I ran a gpresult under my standard domain (non-elevated) account. I noticed 2 AD security groups that my account was inheriting that made no sense... I looked into them, and they're Universal…
Eric Gibson
  • 93
  • 1
  • 8
1
vote
1 answer

Proper way to manage privileged admin groups for two trusted Active Directory forests?

The scenario is: There are two domains (DomA and DomB) with a trust relationship. The relationship is forest wide with the exception that DomA can access resources in DomB, but users in DomB should not have access to DomA. In Domain A, there are…
Marko Farkas
  • 163
  • 5
  • 11
1
vote
1 answer

What are ingress security groups in AWS / Terraform

When defining an AWS security group in Terraform, you can set up inbound/ingress configurations. However, these ingress configurations can also point at other security groups. The terraform documentation simply says "(Optional) List of security…
diplosaurus
  • 123
  • 1
  • 4
1
vote
0 answers

Squid with AD groups + Kerberos authentication in pfsense?

I followed steps found on the link: https://journeyofthegeek.com/2017/12/30/pfsense-squid-kerberos/ And the kerberos authentication without AD group membership restriction works very well, but I don't want all the users to have internet access. I…
Marko Farkas
  • 163
  • 5
  • 11
1
vote
1 answer

EC2 instance's Docker ports not not accessible after changing instance type

When changing the EC2 instance type I ran into a problem. The machine had 3 Docker containers that needed to be restarted and after the restart their ports became unreachable. What could be the issue and how should I go about obtaining other…
Peter Gerhat
  • 111
  • 1
  • 4
1
vote
1 answer

Windows Server 2008 r2 security permissions

I hope I've selected the correct StackExchange for this question. I have searched google and StackExchange but haven't been able to find an answer to my question with the search queries used. I setup a home server as a little project to learn the…
Gaming Lexus
  • 13
  • 3
1
vote
1 answer

AWS: NGinx Reverse Proxy and Security Groups

I have two servers, called NGinxServer and AppServer. NGinxServer is the accessible entry point for all calls to AppServer. For security reasons, I modified the Security Group for AppServer to not allow any connections except those coming from the…
Black Dynamite
  • 523
  • 2
  • 5
  • 16
1
vote
1 answer

Microsoft SQL Server users from OU/SG

MSSQL has its own user authentication apart from the operating system or Active Directory user authentication but can I apply database permissions to organisational units or security groups or somehow tie those to MSSQL?
user8056359
  • 161
  • 2
  • 7
1 2 3
11 12