/build/static/layout/Breadcrumb_cap_w.png

KACE Product Support Question


Drawback in using Kace public ip????????

01/13/2016 849 views
Hi All,


What are the drawback in using Kace public ip in amp.conf file, we have some users in office who doesnt connect to office network,
we can access Kace using Public and private ip, all the computers are configured with private ip,when users are out of  office,machines are not
able to update for long time, pls let me know if there is any drawbacks in using public ip in amp.conf so that end user  machines could update itself 

when connected from other networks(Public)
Answer Summary:
0 Comments   [ + ] Show comments

Comments


Answer Chosen by the Author

1
Hi,


there are no drawbacks using a public IP and so publishing your KACE appliance on Internet but I'd recommend to use a SSL certificate at this point.
Please do not use the self signed certificate but buy a certificate issued by a known, trusted CA. (Verisign, GoDaddy, etc..)
If you already have a wildcard certificate (e.g.: *.mydomain.com)  you can use it as well for your KACE appliances.
Kind regards,
Marco - StockTrader

Answered 01/13/2016 by: StockTrader
Red Belt

All Answers

0
From a Security side, if there are any vulnerabilities, like the SSL Poodle or with the FreeBSD, you would be exposing your KBOX to those issues and would have to wait for kace to provide a fix. They usually recommend pulling it behind your firewall if that ever happens. It is far and few in between that it would happen but just something to be aware of. Outside of that, as StockTrader mentioned, SSL is good.

I always recommend though to keep the KBOX behind your firewall and NAT the traffic through so you won't have to worry about exposing the KBOX In the DMZ or anything. Just installed the agents with a public DNS name and let it resolve into your network and open only the ports the KBOX needs. 
Answered 01/13/2016 by: nshah
Red Belt

0
@nshah


can you give little info on implementing K1000 with public DNS name.
Answered 01/13/2016 by: rahimpal
Red Belt

Don't be a Stranger!

Sign up today to participate, stay informed, earn points and establish a reputation for yourself!

Sign up! or login

Share

 
This website uses cookies. By continuing to use this site and/or clicking the "Accept" button you are providing consent Quest Software and its affiliates do NOT sell the Personal Data you provide to us either when you register on our websites or when you do business with us. For more information about our Privacy Policy and our data protection efforts, please visit GDPR-HQ