@george1421 Thanks George, I’m going to look into AD logging. Confirmed what I was thinking. I appreciate your help!
Posts made by Brendan Clemente
MFA or logging for brute force attempts
Good afternoon all,
I am currently in the process of testing FOG for use in deployment of Windows 10. All testing has gone well so I sent the machine over to our IT Security team for testing. They came back and said the device was secure, but they are concerned of a brute force attack on the FOG management client, at which point a malicious user could upload and deploy tainted images or perform other malicious tasks.
To cure this, I am curious as to if there is a way to enable MFA for the main login page? Or, is there logs stored somewhere of login attempts that I can have our IT Security team create alerts for? If not, has anybody created a script to create these logs?
Either one of these two solutions should abate the concerns of our security team. Thank you in advance.
RE: Rebooting FOG server issue
@Sebastian-Roth @george1421 Thank you both. I am most likely eventually going to move to using FOG dhcp so I am not going to go too crazy with this. Was just curious as to if this was a known issue with a workaround. Just using our hq dhcp for the time being for testing.
RE: Multiple FOG Servers
@Sebastian-Roth @george1421 Thank you both. I understand that FOG was not really created for this large of a project, however, I’m interested to see how to handles it and what, if anything, will break along the way. I will keep everyone updated with my experiences and issues so that hopefully somebody else can avoid my mistakes in the future!
With the amount of stores we have, I think it may be better to use each FOG server independently to avoid overloading any single part of the system. This will make managing the project more difficult but in the end I think it will be better suited for this client. Each store has a maximum of 7 computers so that should be much more within the programs capabilities. For our corporate office and some of the larger daughter sites, (upwards of 300 computers per site) I will be performing local upgrades.
If I had more time to play around with a central FOG node I might try to make it work, but with Windows 10 support ending at the close of this year, I need to have all 1200+ computer upgraded by then as to not give our compliance department a stroke.
Again, thank you both for the prompt response and for supporting an opensource program.
Multiple FOG Servers
Good afternoon all, I am currently running FOG on a Raspberry Pi and am about to deploy an RPi to about 150 locations. My question is is it possible to manage all of these FOG servers from one client, instead of having to log into each htttp://ipaddress/fog/management.
So basically I am looking to manage all of my hosts and images, across about 150 servers on one single web client. This would greatly help consolidate this project into a manageable controller. Thank you in advance.
Rebooting FOG server issue
Good afternoon all, I am working on a project to deploy Windows 10 using FOG loaded up on a Raspberry Pi. Everything has been running fairly smoothly, but I have a small issue whenever I shutdown the RPi and then boot it back up.
After I boot the pi back up and schedule a task for one of my hosts, the host will not see the tftp request sent by the FOG server while pxe booting. I can see the host online through the FOG client but I cannot get the computer to pxe boot into the task. The only thing I have found to cure this issue is to stop and start the isc dhcp service using the below commands:
sudo service isc-dhcp-server stop
sudo service isc-dhcp-server start
I am not using the fog server as my DHCP server, instead I am using our DHCP server onsite. This is not an issue currently because I am local to the RPi so I can SSH and run these commands. However, my eventual goal is to get these RPi’s installed on the private network of each of the store’s I am upgrading, so I do not want the other employee’s in my department to have to go through this to get the FOG server functional again after each restart.
Is there a certain way to shut down the FOG server that will avoid this issue? If not, is there a way to include this service restart in the boot sequence?
Thank you in advance for the help.