I'm facing a situation where server administrators are installing various applications on our servers but aren't removing them once they're no longer needed. Some of these applications, like Notepad++, 7Zip, Wireshark, and Adobe programs, aren't actually supported by our organization. Furthermore, we're receiving complaints from Qualys about these applications. We have SCCM (System Center Configuration Manager) in place, but I'm uncertain about how to effectively control the installation of these applications. What steps can I take to manage this better?
3 Answers
Just a heads-up—most of those tools you mentioned are pretty common. It's crucial to ensure that tools like 7Zip and Notepad++ are supported since they’re essential for daily tasks. Wireshark might require closer monitoring, but it’s generally used a lot in troubleshooting.
I get how this can be tricky! The first thing you could do is update your approved applications list to include essential tools like Notepad++, 7Zip, and Wireshark, especially if they are commonly used within your team. This way, everyone knows what’s acceptable and can have access to the tools they need without causing compliance issues.
Honestly, it sounds more like a people issue than a tech one. You might want to consider removing admin privileges from most users. This puts you in control of what gets installed. If admins need specific tools, push for their approval and get them managed through SCCM. Remember, anything not in your management system could end up posing risks due to lack of updates.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures