Intel vPro® Platform
Intel Manageability Forum for Intel® EMA, AMT, SCS & Manageability Commander
Announcements
All support for Intel NUC 7 - 13 systems has transitioned to ASUS. Read latest update.
2815 Discussions

Intel EMA - Please update documentation of correct Active Directory OU ACL access rights

Horgster
New Contributor I
592 Views

Hi!

In these days, security is very important when managing Intel AMT and Active Directory.
The current "Intel EMA Server Installation and Maintenance Guide v1.3.3.1" is lacking correct Active Directory ACL permissions.  

The guide is only referring to using "Full Control" within your AMT OU.  From a security perspective this is not recommended and it is important that Intel specifies only the required ACL permissions for OU needed by Intel EMA.

I have tried to use the permissions as documented here, but it apparently that is not sufficient for Intel EMA

https://itpeernetwork.intel.com/tightening-up-intel-scs-service-account-permissions-for-managing-intel-amt-computer-objects-in-microsoft-active-directory/

Please update your guide with correct and the only needed ACL.

Best Regards
Horgster



0 Kudos
0 Replies
Reply