Intel® vPro™ Platform
Intel Manageability Forum (Intel® EMA, AMT, SCS & Manageability Commander)
Announcements
Intel® Endpoint Management Assistant (Intel® EMA) Cloud Start Tool for Azure* 2.0 is now available for download here.

The Intel® Manageability Commander 2.2 has been released! Learn more here.

The Intel® Endpoint Management Assistant, version 1.5.1 is now available for download here.

The Intel® Setup and Configuration Software tool will End of Life (EOL) on 12/31/2022. The Intel® Setup and Configuration Software Download will be available until March 31, 2021. For details, Please click here.
2562 Discussions

Intel EMA - Please update documentation of correct Active Directory OU ACL access rights

Horgster
New Contributor I
316 Views

Hi!

In these days, security is very important when managing Intel AMT and Active Directory.
The current "Intel EMA Server Installation and Maintenance Guide v1.3.3.1" is lacking correct Active Directory ACL permissions.  

The guide is only referring to using "Full Control" within your AMT OU.  From a security perspective this is not recommended and it is important that Intel specifies only the required ACL permissions for OU needed by Intel EMA.

I have tried to use the permissions as documented here, but it apparently that is not sufficient for Intel EMA

https://itpeernetwork.intel.com/tightening-up-intel-scs-service-account-permissions-for-managing-int...

Please update your guide with correct and the only needed ACL.

Best Regards
Horgster



0 Kudos
0 Replies
Reply