Protect Host from Imaging



  • It would be nice if you could protect a host from being imaged the way an image can be protected from being overwritten.


  • Senior Developer

    @ITCC it is set how it’s set because how it works. It’s not a “host” thing as we don’t have a decent mechanism, in my opinion, to find hosts. Because hosts are found by MAC address the simplest mechanism is to use to Mac table to work against.



  • nope, was not aware!

    perfect i guess. Although to keep a std you could move it down and call it protect…
    job done and easier to identity tick box.


  • Testers

    @Tom-Elliott said in Protect Host from Imaging:

    Are you guys aware of image ignore?

    Just to clarify what Tom is talking about is on the host management page next to the MAC address there are 2 checkboxes the second one is “Ignore MAC for Imaging”

    0_1466688584728_Capture2.PNG


  • Senior Developer

    Are you guys aware of image ignore?



  • I second this.

    I came on the forum to request the same feature, thought i would check first !

    The idea of protecting the teacher machine or a machine that has extra software is amazing !!!
    When you protect it, you could have a notes box that displays on the machine if imaging was started, so you could give reasons for the protection.



  • @Scott-B Not if group policy prohibits the user accessing the C:\ drive.

    We’ve set it up so our students and staff can’t store EXE, DLL, BAT, MSI, PS1, and a slue of other executables - to include MP3s and some other media types. They aren’t allowed to save them period, and also cannot be run from removable media either. Zero access to the command prompt, to the control panel, etc. The list goes on, we run a fort-knox environment.



  • @Wayne-Workman said in Protect Host from Imaging:

    @Scott-B The way I would handle that is by removing that one computer from the group - permanently. You could tell this to any I.T. staff you have. At my current job, nothing is stored locally; We blast everything every year no ifs-ands-or-buts.

    Nothing should be stored locally… but we all know the only copy of that PowerPoint was the one place it shouldn’t have been.



  • @Scott-B The way I would handle that is by removing that one computer from the group - permanently. You could tell this to any I.T. staff you have. At my current job, nothing is stored locally; We blast everything every year no ifs-ands-or-buts.



  • @Wayne-Workman said in Protect Host from Imaging:

    I’m assuming this happened to you. There is a confirmation page for imaging. And using the iPXE menu in network booting, you have to supply credentials to image.

    I was thinking for for say a lab where you want to image 30 desktops, but for the teacher pc. There all in the same room, same type of pc, get the same printers, but the teacher PC has the smartboard tools or a slew of local files they will be using the next morning ect…



  • I’m assuming this happened to you. There is a confirmation page for imaging. And using the iPXE menu in network booting, you have to supply credentials to image.


 

441
Online

41.8k
Users

12.3k
Topics

116.1k
Posts