Posted on 05-20-2010 11:03 AM
Our jss is internal only and I have to wait for the sales staff to 'vpn in' to get updates or whatever.
Do any of you have your jss available outside your firewall?
What, if any, special security steps did you take to do this.
I would like to have better control over the sales force laptops.
Peter
Posted on 05-20-2010 12:38 AM
He have it open only on port 8443, and the PackageServer open on 80 for http
deployment of packages. We use strong passwords on our main accounts, but
our main piece is to restrict it to the secure http port.
-John
Posted on 05-20-2010 12:47 AM
We are in the process of setting up a system such that we have a Tomcat
server outside the firewall which doesn't have a DB. This server would
simply act as a relay for inventory information coming in from the outside
and then forward it to a DB which is inside the firewall. We would also have
distribution points which would server those outside the firewall as well.
We have been working with JAMF on the solution and hope to implement it in
the next month or so.
Jon