I'm looking for advice on how to provide access to production systems for a vendor that hosts them on our behalf. What are the best practices or considerations we should keep in mind when setting this up?
3 Answers
A great approach is to set up supervised access through screen sharing tools like Teams. It keeps everything in check and ensures you're aware of any changes happening in real-time.
Definitely need clarity on what 'hosting' means in your situation. If they manage the actual servers, they shouldn’t require AD access. But for application hosting, there would be different access levels needed. Establish what level of control they need and adjust permission settings accordingly.
If the vendor is hosting the system, they likely already have some level of access. But if they need specific permissions, it's crucial to implement some safeguards. One option is to create an Active Directory (AD) account for them. This way, you can monitor their activities and enable the account only when they need access. Also, if the system is sensitive, consider letting them guide you through any changes via a screen share instead of allowing direct control.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures