Questions tagged [security-groups]
175 questions
1
vote
2 answers
List all groups or users in directories recursively
Context
Windows 2008 R2 infrastructure.
We manage network share permissions by AD security groups and put user objects in those groups.
Objective
I want to see what security groups are currently assigned to each folder on a particular server. I…
codaamok
- 186
- 1
- 13
1
vote
2 answers
AWS security group cross regions
I am trying to set a security group A to allow SSH access from security group B in a different region. I don't have much experience with networking in general and AWS networking.
Followed the instruction from here:
You cannot reference the security…
Elad Weiss
- 179
- 6
1
vote
1 answer
AWS Postgres database IP in security group, how to enter info to survive IP address changes?
I have an existing prod Postgres database and I would like to replicate a table to a new Postgres database. In order to get the two to be able to talk to each other, I had to edit an AWS security group and add the public IP address of the new…
mj_
- 131
- 1
- 4
1
vote
1 answer
RHEL 8: Administrator vs. Auditor role
On RHEL 8, are there prepared functions, methods, processes or tools to implement administrator/operator and auditor roles in the following way:
An administrator/operator should be able to do almost everything except modifying/deleting logs
An…
stackprotector
- 596
- 1
- 8
- 27
1
vote
0 answers
Remove the default Security Group assigned by Elastic Beanstalk
I have created a Elastic Beanstalk environment and have created this .config to edit the security groups which worked. Now my EC2s are attached to the new SG and the default one.
option_settings:
- namespace: aws:autoscaling:launchconfiguration
…
Rami
- 11
- 1
1
vote
3 answers
AWS - Adding multiple IPs to Security Group Inbound Rules
I need to open 20 ports for 12 IP blocks.
Do I have to manually add 240 rules in this case? I feel like there must be a way to just copy&paste the IP list to somewhere.
I googled and found it's not possible, but it's hard to…
Lunartist
- 125
- 1
- 8
1
vote
2 answers
Whitelist both IPv4 and IPv6 in AWS Security Group
I am setting up an SFTP server, I want to white list all the IPs in the Security Group so people can connect to it from anywhere.
At the moment I am adding 2 rules to the Inbound rules, one rule for IPv4 and one for IPv6:
Is there anyway that I…
Hooman Bahreini
- 518
- 6
- 17
1
vote
3 answers
How can I easily manage constantly changing public IP addresses in my many security groups
Our development environment is hosted on AWS, and is accessed by dozens of people. As people join and leave the project, or work from alternate (often temporary) locations, I find myself constantly updating many of our security groups.
Example:…
Jeromy French
- 319
- 4
- 15
1
vote
1 answer
Why don't Windows domain machines periodically query security group membership, like other things?
When I was in lower tier support (and sometimes still), one of the most annoying sequences of events was a request for new file permissions >> add user to security group and specify in the reply "you must log out and back into your machine". 20…
WakeDemons3
- 185
- 6
1
vote
2 answers
Link a GPO to an OU or security group, Who will win?
Here's the scenario:
A GPO is linked to an OU to enable, for example, UAC setting.
However, since there are certain systems that require UAC to be disabled, there is a GPO that disables these settings. This GPO is linked to a security group. Those…
Tom
- 11
- 3
1
vote
1 answer
How to Apply Egress rules to Default Security Group - AWS
I would like to apply port 443 outbound rule to the 'Default' security group. It worked by creating a dedicated block OutboundRule (which is commented out). Instead of creating a new block, I want to apply the rule in the WebServerSecurityGroup…
Prime
- 143
- 1
- 6
1
vote
1 answer
GPO and Security Groups in multiple domain
I have 2 forests, each with one domain with a bidirectional trust.
I have created security groups in forest A, to access folders, where I have added both users from forest A and B, the accesses are working for every user of both forest.
I have…
chart
- 13
- 2
1
vote
1 answer
Active Directory - grant access rights to a user that belongs to multiple groups
I have a Windows 2012 Server with file server role.
I have users in my active directory which are defined by 3 things : country - service - role
I have about 10 countries, 10 services and 5 roles.
How can I grant access to a folder to users which…
Pierre Lebur
- 11
- 3
1
vote
1 answer
ec2 permissions to manage only firewall access
I'd like to allow some developers to manage firewall rules, specifically rules in ec2 security groups, (or some of them ideally) so that they can, eg, update their changing IP addresses to access development machines. I've found there isn't a way…
csdev
- 111
- 4
1
vote
1 answer
AWS EC2 access attempts on blocked ports
I have recently installed OSSEC on a RHEL 8 server being hosted on AWS EC2. Since then I have been receiving brute force attempts and other attempts on ports that are not open in my security group.
How are users able to get to my server at all when…
James
- 113
- 1
- 8