I'm curious about the community's thoughts on installing remote management monitoring (RMM) agents like NinjaOne on our servers for remote access instead of using Remote Desktop Protocol (RDP). We currently haven't allowed this, but I've seen many organizations implement it successfully, with added security measures like multi-factor authentication and access restrictions. We're considering deploying these agents for patch management and automation on our servers, which raises the question of whether to also use them for remote desktop access. Most of our servers are Windows-based, and while I see potential benefits, I'm concerned about compliance with standards like NIST and SOC 2, as well as the risk of unauthorized access. I want to know if I'm being overly cautious or if there are legitimate concerns regarding the use of RMM tools on crucial systems, especially given incidents like the SolarWinds breach.
5 Answers
Honestly, I wouldn't use any RMM on critical servers like Domain Controllers. There’s too much risk if either your account or the RMM provider gets compromised.
As an MSP, we do use RMM agents on servers for compliance reasons, including PCI and SOC 2, but we manage access strictly. Consider using a jump box for secure remote management. We ensure that all logins are tracked through an MFA system so that access is controlled carefully.
I think it really depends on your risk tolerance. RMM can streamline patching and monitoring, but you should be careful about who gets full access. Keep in mind that some features can be re-enabled by RMM admins, even if they are blocked by policy.
If you're going with a self-hosted RMM, ensure it’s properly secured. Just remember, a cloud-based solution can pose further risks, especially if it gets breached. I'd stick to trusted, on-prem solutions.
The concerns about using RMM tools on servers are valid, especially considering past incidents like SolarWinds. I recommend using RDP unless you have a solid business justification for deploying RMM and someone to sign off on it. It's important to weigh the risks versus rewards.

Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures